b"U.S. SECURITIES AND EXCHANGE COMMISSION\nOFFICE OF THE INSPECTOR GENERAL\n\n\n\n\nSEMIANNUAL REPORT TO CONGRESS\n   April 1, 2010 - September 30, 2010\n\x0c\x0cOrganizational Chart                                      Office of Inspector General\n\n\n\n                             Inspector General\n\n\n\n               Counsel to the                                    Deputy\n                 Inspector                                  Inspector General\n                  General\n\n\n               Legal Assistant\n\n                                      Assistant Inspector\n                                                                                   Assistant Inspector\n                                          General for\n                                                                                   General for Audits\n                                        Investigations\n\n\n Assistant to                       Senior              Senior                    Audit                 Audit\nthe Inspector                    Investigator        Investigator                Manager               Manager\n   General\n\n                                                                                  Audit                 Audit\n                                    Senior              Senior\n    Legal                                                                        Manager               Manager\n                                 Investigator        Investigator\n  Specialist\n                                                                                  Audit                 Audit\n                                           Investigator                          Manager               Manager\nAdministrative\n   Officer\n\n                                                                                            Audit\n                                                                                           Assistant\n                                                              Attorney Adviser\n\x0cApril 1, 2010 - September 30, 2010\n                                                                    OFFICE OF\n                                                                    INSPECTOR\n                                         U.S. Securities\n                                         and Exchange\n                                                                    GENERAL\n                                          Commission\n                                                                    SEMIANNUAL\n                                                                    REPORT TO\n                                                                    CONGRESS\n                                     MISSION\n                                        The mission of the Office of Inspector General (OIG) is to promote the integrity, efficiency,\n                                     and effectiveness of the critical programs and operations of the U.S. Securities and Exchange\n                                     Commission (SEC). This mission is best achieved by having an effective, vigorous and inde-\n                                     pendent office of seasoned and talented professionals who perform the following functions:\n\n\n                                     \xe2\x80\xa2     Conducting independent and objec-           \xe2\x80\xa2    Offering expert assistance to improve\n                                           tive audits, evaluations, investigations,        SEC programs and operations;\n                                           and other reviews of SEC programs\n                                           and operations;                             \xe2\x80\xa2    Communicating timely and useful\n                                                                                            information that facilitates\n                                     \xe2\x80\xa2     Preventing and detecting fraud, waste,           management decision making and the\n                                           abuse, and mismanagement in SEC                  achievement of measurable gains; and\n                                           programs and operations;\n                                                                                       \xe2\x80\xa2    Keeping the Commission and the\n                                     \xe2\x80\xa2     Identifying vulnerabilities in SEC sys-          Congress fully and currently informed\n                                           tems and operations and recommend-               of significant issues and developments.\n                                           ing constructive solutions;\n\x0c\x0cU.S. Securities and Exchange Commission\n\n                                                                                   SEMIANNUAL\n                                                                                   REPORT TO\n                                                   Office of\n                                                  Inspector\n                                                   General\n                                                                                   CONGRESS\n                                           CONTENTS\n                                          MESSAGE FROM THE INSPECTOR GENERAL\t..............................................................1\n\n                                          MANAGEMENT AND ADMINISTRATION\r........................................................................3\n                                                  Agency Overview\r................................................................................................................3\n                                                  New OIG SEC Employee Suggestion Hotline\r......................................................................3\n                                                  OIG Five Year Strategic Plan\r...............................................................................................4\n                                                  OIG Staffing\r........................................................................................................................5\n\n                                          CONGRESSIONAL AND OTHER RELATED TESTIMONY,\n                                          \r REQUESTS, AND BRIEFINGS\r.....................................................................................7\n\n                                          THE INSPECTOR GENERAL\xe2\x80\x99S STATEMENT ON THE SEC\xe2\x80\x99S MANAGEMENT AND\n                                          \r PERFORMANCE CHALLENGES\r...............................................................................13\n\n                                          ADVICE AND ASSISTANCE PROVIDED TO THE AGENCY AND\n                                          \r THE GOVERNMENT ACCOUNTABILITY OFFICE\r.....................................................19\n\n                                          COORDINATION WITH OTHER OFFICES OF INSPECTOR GENERAL\r........................21\n\n                                          AUDITS AND EVALUATIONS\r.........................................................................................23\n                                                  Overview\r..........................................................................................................................23\n                                                     Audits\r.........................................................................................................................23\n                                                     Evaluations\r..................................................................................................................23\n                                                     Audit Follow-up and Resolution\r...................................................................................24\n                                                  Audits and Evaluations Conducted\r...................................................................................24\n                                                     Assessment of Corporation Finance\xe2\x80\x99s Confidential Treatment Processes and\n                                                     \r Procedures (Report No. 479)\r....................................................................................24\n                                                     Review of the SEC\xe2\x80\x99s Section 13(f) Reporting Requirements (Report No. 480)\r..............28\n\x0c             Real Property Leasing Procurement Process (Report No. 484)\t....................................31\n             Assessment of the SEC\xe2\x80\x99s Privacy Program (Report No. 485)\r.......................................35\n             Review of PRISM Automated Procurement System Support Contracts\n              (Report No. 486)\t.......................................................................................................39\n             Audit of the FedTraveler Travel Service (Report No. 483) \t..............................................41\n\n    PENDING AUDITS AND EVALUATIONS \t...............................................................................44\n         Assessment of Compliance with Terms and Conditions of Exemptive Orders and\n           No-Action Letters \t.....................................................................................................44\n         Audit of Time-And-Materials and Labor-Hour Contracts \t..............................................44\n         Assessment of the SEC\xe2\x80\x99s Budget Execution Process\r..................................................45\n         2010 Federal Information Security Management Act Assessments \t..............................45\n         Implementation and Compliance with Homeland Security\n           Presidential Directive 12 (HSPD-12)\t..........................................................................45\n\nINVESTIGATIONS \t..........................................................................................................47\n         Overview\t...........................................................................................................................47\n         Investigations and Inquiries Conducted\t.............................................................................48\n            Allegations of Improper Coordination Between the SEC and Other Governmental\n              Entities Concerning the SEC\xe2\x80\x99s Enforcement Action Against\n              Goldman Sachs & Co. (Report No. OIG-534) \t...........................................................48\n            Investigation of the Circumstances Surrounding the SEC\xe2\x80\x99s Proposed\n              Settlements with Bank of America, Including a Review of the Court\xe2\x80\x99s Rejection\n            \r of the SEC\xe2\x80\x99s First Proposed Settlement and an Analysis of the Impact of\n              Bank of America\xe2\x80\x99s Status as a TARP Recipient (Report No. OIG-522)\r.......................57\n            Failure to Maintain Active Bar Membership, Lack of Candor, Conflicts of\n              Interest, Improper Use of Non-Public Information, and Abuse of\n              Full-Time Telework Arrangement at Headquarters (Report No. OIG-520)\t..................64\n            Improper use of Leave Without Pay to Receive Full-Time Benefits\n              While Working Part-Time Hours by OCIE Staff (Report No. OIG-524) \t.......................66\n            Misrepresentation of Identity and Lack of Active\n              Bar Membership (Report No. OIG-541) \t....................................................................67\n            Unprofessional Conduct by Supervisor While Conducting\n              Examination (Report No. OIG-530) \t...........................................................................68\n            Allegation of Failure of a Regional Office to Conduct an\n              Adequate Investigation (Report No. OIG-529) \t...........................................................69\n            Allegations of Failure to Conduct Adequate Enforcement Investigation\n              and Misconduct by Enforcement Attorneys (Report No. OIG-531)\t............................69\n            Allegation of Unauthorized Disclosure of Non-Public\n              Information (Report No. OIG-525)\t............................................................................. 70\n            Complaint Concerning Obstruction of Justice (Report No. OIG-513)\t........................... 71\n            Inquiries Conducted and Memorandum Reports Issued\t.............................................. 71\n               Misuse of Computer Resources and Official\n                  Time (PIs: 10-30, 10-31, 10-32, and 10-59) \t......................................................71\n               Allegations of Preferential Treatment, Improper Gifts, and\n               \t Improper Solicitation of Charitable Donations (PI 09-103)\t....................................72\n               Appearance of Impropriety With Respect to Acts Affecting a\n                  Personal Financial Interest (PI 09-04)\t..................................................................73\n\x0c               Failure to Follow Internal Policy Regarding Separation of\n                  a Probationary Employee (PI 09-60) ....................................................................74\n               Enforcement Attorney Engaged in Prohibited Political Activity (PI 10-54) .................74\n               Complaints Regarding Waste and Abuse in Federal Contracts (PI 09-110) ..............75\n               Allegation of Failure to Investigate Complaints (PI 09-39) .........................................75\n               Improper Pre-Selection of Contractor ......................................................................76\n\nPENDING INVESTIGATIONS .........................................................................................76\n            Complaint of Investigative Misconduct by Various Enforcement Attorneys ...................76\n            Complaint of Failure of an SEC Regional Office to Uncover Fraud and\n              Inappropriate Conduct on the Part of a Senior-Level Official......................................77\n            Allegation of Misconduct by an SEC Official Testifying Before Congress.......................77\n            Complaint of Abusive and Intimidating Behavior ..........................................................77\n            Allegation of Improper Access to SEC Facilities and Computer Systems .....................78\n            Investigation Concerning the Role of Political Appointees in\n              the Freedom of Information Act Process ...................................................................78\n            Allegation of Procurement Violations ...........................................................................78\n            Allegation of Negligence in the Conduct of an Enforcement Investigation .....................79\n            Complaint of Unauthorized Disclosure of Non-Public Information.................................79\n            Allegation of Unauthorized Disclosure of Non-Public Information to\n              the News Media .......................................................................................................79\n            Allegation of Improper Preferential Treatment and Failure to\n              Investigate Alleged Obstruction of SEC Investigation at Regional Office ....................80\n            Complaint of Violation of Post-Employment Restrictions ..............................................80\n            Complaint of Abuse of Compensatory Time ................................................................80\n\nREVIEW OF LEGISLATION AND REGULATIONS ..........................................................81\n\nSTATUS OF RECOMMENDATIONS WITH NO MANAGEMENT DECISIONS ................85\n\nREVISED MANAGEMENT DECISIONS .........................................................................85\n\nAGREEMENT WITH SIGNIFICANT MANAGEMENT DECISIONS .................................85\n\nINSTANCES WHERE INFORMATION WAS REFUSED ..................................................85\n\nTABLES:\n         1 List of Reports: Audits and Evaluations ......................................................................87\n         2 Reports Issued With Costs Questioned or Funds Put to\n           Better Use (Including Disallowed Costs) ......................................................................89\n         3 Reports With Recommendations on Which Corrective Action\n           Has Not Been Completed ...........................................................................................91\n         4 Summary of Investigative Activity ..............................................................................101\n         5 Summary of Complaints Received ............................................................................103\n         6 References to Reporting Requirements of the Inspector General Act ........................105\n\x0cAppendix A: Peer Reviews of OIG Operations\t............................................................ 107\n                Peer Review of National Credit Union Administration\xe2\x80\x99s Office of\n                  Inspector General\r...........................................................................................107\n                Peer Review of the SEC OIG\xe2\x80\x99s Audit Operations by the Corporation\n                  for Public Broadcasting OIG\r............................................................................107\n                Peer Review of the SEC OIG\xe2\x80\x99s Investigative Operations by U.S. Equal\n                  Employment Opportunity Commission OIG\r.....................................................107\n\nAppendix B: Testimony of H. David Kotz, Inspector General of\n            the Securities and Exchange Commission, Before the\n            United States Senate Committee on Banking,\n            Housing and Urban Affairs\t...................................................................... 109\n\nAppendix C: Testimony of H. David Kotz, Inspector General of the\n            Securities and Exchange Commission, Before the\n            Financial Crisis Inquiry Commission\t....................................................... 121\n\x0c                       Message from the\n                       Inspector General\n                       I am pleased to present the United States (U.S.) Securities and Exchange\n                       Commission (SEC or Commission) Office of Inspector General\xe2\x80\x99s (OIG\xe2\x80\x99s)\n                       Semiannual Report to Congress for the period of April 1, 2010 through Sep-\n                       tember 30, 2010. This report is required by the Inspector General Act of\n                       1978, as amended, and covers the work performed by the OIG during the\n                       period indicated.\n\n         The reporting period was another busy and productive one for the OIG. We issued numer-\nous significant audit and investigative reports on matters critical to the SEC\xe2\x80\x99s programs and opera-\ntions. During this reporting period, we issued six reports on audits or reviews of a wide variety of\nareas and matters. We conducted an audit of the SEC\xe2\x80\x99s Division of Corporation Finance\xe2\x80\x99s confi-\ndential treatment processes and procedures and made several recommendations to improve the\nSEC\xe2\x80\x99s policies to ensure there is a robust and substantive review and examination of confidential\ntreatment requests in accordance with the applicable regulatory requirements. We also conducted a\nreview of the reporting requirements under Section 13(f) of the Securities Exchange Act of 1934,\nwhich was enacted to increase the public availability of information regarding the securities holdings\nof institutional investors. Our review found that significant improvements can be made to the SEC\xe2\x80\x99s\nreview and monitoring of the information reported under Section 13(f), and we made numerous\nspecific and concrete recommendations to assist the SEC\xe2\x80\x99s efforts in this area. We also conducted an\nassessment of the SEC\xe2\x80\x99s privacy program, identifying vulnerabilities in SEC information technology\n(IT) systems that could have led to the disclosure of valuable and sensitive data. Finally, we con-\nducted audits of the SEC\xe2\x80\x99s electronic travel service program and its real property leasing procure-\nment process, as well as a review of a multi-million dollar contract about which anonymous com-\nplainants had expressed significant concerns. In all of our audits and reviews, we strove to identify\ncost savings and to make recommendations to improve the SEC\xe2\x80\x99s programs and operations. I am\npleased to report that management has concurred with nearly every recommendation we made in\nthese audits and reviews and is beginning to implement corrective action.\n\n         On the investigative side, we completed ten investigative reports on a myriad of complex and\ncritical issues. We concluded a year-long investigation of the circumstances surrounding the SEC\xe2\x80\x99s\nproposed settlements with a leading financial institution, which included an analysis of the impact of\nthe financial institution\xe2\x80\x99s status as a recipient of funds under the Troubled Asset Relief Program\n(TARP) on the SEC enforcement action. We also conducted a thorough and comprehensive investi-\ngation of allegations we received from several members of the House of Representatives that the\nSEC improperly coordinated with the White House, Members of Congress or Democratic political\ncommittees concerning the bringing of an enforcement action against Goldman Sachs & Co. In ad-\ndition, we issued reports of investigation regarding allegations that SEC employees violated person-\nnel rules by improperly receiving excessive federal benefits, failed to maintain active bar member-\nships and misrepresented their bar status, abused their telework, engaged in significant conflicts of\ninterests, and acted unprofessionally while conducting examinations.\n\n        During the reporting period, I also had the opportunity to testify before the U.S. Congress or\nrelated entities on two occasions. In May 2010, I testified before the Financial Crisis Inquiry Com-\n\n\n\n                                                     1\n\x0cmission (FCIC) on the subject of the implementation of the SEC\xe2\x80\x99s Consolidated Supervised Enti-\nties (CSE) program and the adequacy of the SEC\xe2\x80\x99s oversight of Bear Stearns and other CSE\nprogram participants. In my testimony, I described the audit reports my Office issued in Septem-\nber 2008, analyzing the SEC\xe2\x80\x99s oversight of the CSE program, in which Bear Stearns, Goldman\nSachs, Morgan Stanley, Merrill Lynch and Lehman Brothers participated. I was pleased to hear\nfrom the FCIC that the OIG\xe2\x80\x99s audits had been invaluable to its work in understanding the roots\nof the financial crisis.\n\n        In September 2009, I testified before the U.S. Senate Committee on Banking, Housing\nand Urban Affairs about an investigation my Office conducted relating to the SEC\xe2\x80\x99s failure to\nuncover the alleged $8 billion Robert Allen Stanford Ponzi scheme. In that testimony, I summa-\nrized the report of the investigation we conducted and provided suggestions about how to reform\nSEC operations.\n\n        I am also pleased to report that during this reporting period, we established an OIG SEC\nEmployee Suggestion Hotline in accordance with Section 966 of the recently-enacted Dodd-\nFrank Wall Street Reform and Consumer Protection Act. Through this new hotline, we are re-\nceiving suggestions from Commission employees for improvements in work efficiency, effective-\nness, and productivity and the use of Commission resources, as well as allegations by Commission\nemployees of waste, abuse, misconduct, or mismanagement within the Commission. I believe\nthat the reports received through this new hotline will result in significant improvements in the\nSEC\xe2\x80\x99s programs and operations and costs savings.\n\n       I am very proud of the exceptional accomplishments of this Office during the past six\nmonths and believe that, particularly during these turbulent financial times, the work of the OIG\nhas been critical in providing the SEC, the U.S. Congress, and the public with valuable\ninformation about the regulatory climate. These accomplishments have been enhanced by the\nsupport of the SEC Chairman and Commissioners, as well as the SEC\xe2\x80\x99s management team and\nemployees. I look forward to continuing this productive and professional working relationship as\nwe continue to help the SEC meet its important challenges.\n\n\n\n\n                                                            H. David Kotz\n                                                            Inspector General\n\n\n\n\n                                              2\n\x0cU.S. Securities and Exchange Commission\n\n                                                                        SEMIANNUAL\n                                                                        REPORT TO\n                                                                        CONGRESS\n                                                Office of\n                                               Inspector\n                                                General\n\n\n\n                                          MANAGEMENT AND\n                                          ADMINISTRATION\n                                          AGENCY OVERVIEW                                          sight Board, alternate trading systems, and\n                                                                                                   credit rating agencies.\n                                               The SEC\xe2\x80\x99s mission is to protect investors;\n                                          maintain fair, orderly, and efficient markets;               In order to accomplish its mission most\n                                          and facilitate capital formation. The SEC                effectively and efficiently, the SEC is organized\n                                          strives to promote a market environment that             into five main divisions (Corporation Finance;\n                                          is worthy of the public\xe2\x80\x99s trust and character-           Enforcement; Investment Management; Trad-\n                                          ized by transparency and integrity. The SEC\xe2\x80\x99s            ing and Markets; and Risk, Strategy, and Fi-\n                                          core values consist of integrity, accountability,        nancial Innovation), and 16 functional offices.\n                                          effectiveness, teamwork, fairness and commit-            The Commission\xe2\x80\x99s Headquarters is located in\n                                          ment to excellence. The SEC\xe2\x80\x99s goals are to               Washington, D.C., and there are 11 Regional\n                                          foster and enforce compliance with the federal           Offices located throughout the country. As of\n                                          securities laws; establish an effective regulatory       September 30, 2010, the SEC employed had\n                                          environment; facilitate access to the                    3,748 full-time equivalents (FTEs), consisting\n                                          information investors need to make informed              of 3,664 permanent and 84 temporary FTEs.\n                                          investment decisions; and enhance the\n                                          Commission\xe2\x80\x99s performance through effective               New OIG SEC Employee Suggestion\n                                          alignment and management of human re-                    Hotline\n                                          sources, information, and financial capital.\n                                                                                                       Section 966 of the Dodd-Frank Wall Street\n                                              SEC staff monitor and regulate a securities          Reform and Consumer Protection Act (Dodd-\n                                          industry that includes more than 35,000 regis-           Frank Act), Public Law 111-203, which was\n                                          trants, including over 10,000 public compa-              enacted on July 21, 2010, required the OIG to\n                                          nies, about 11,500 investment advisers, about            establish a new suggestion hotline program for\n                                          7,800 mutual funds, and about 5,400 broker-              SEC employees. We are pleased to report that\n                                          dealers, as well as national securities exchanges        effective September 27, 2010, the OIG, in ac-\n                                          and self-regulatory organizations, 600 transfer          cordance with the requirements of the Dodd-\n                                          agents, the Municipal Securities Rulemaking              Frank Act, established both a new hotline tele-\n                                          Board, the Public Company Accounting Over-               phone number and electronic mailbox.\n                                                                                                   Through either of these mechanisms, the OIG\n\n\n                                                                                               3\n\x0cwelcomes suggestions by all SEC employees for             and procedures are designed to ensure that our\nimprovements in work efficiency, effectiveness,           audits and investigations are conducted in a fair\nand productivity and the use of the resources of          and impartial manner. The OIG considered\nthe Commission, as well as allegations by SEC             any issues or concerns that had been raised dur-\nemployees of waste, abuse, misconduct or mis-             ing audits and investigations conducted during\nmanagement within the Commission.                         the past several years to ensure they were ap-\n                                                          propriately addressed in the Plan. The OIG\n    The OIG will carefully review and give seri-          then developed the performance indicators de-\nous consideration to all suggestions or reports           scribed in the Plan to include not only output\nreceived through the new hotline. Consistent              measures, but also outcome measures.\nwith the requirements of Section 966 of the\nDodd-Frank Act, the OIG will maintain as con-                 The Plan set forth the following OIG vision:\nfidential the identity of individuals who provide         To increase the likelihood that Commission ob-\ninformation to the new hotline, unless the indi-          jectives are achieved as a trusted contributor to\nvidual requests otherwise in writing. The OIG             investor protection, the maintenance of fair, or-\nwill also keep confidential any specific                  derly and efficient markets, and the facilitation\ninformation provided to the hotline, at the re-           of capital formation in conducting audits and\nquest of the individual making the suggestion or          investigations and the achievement of its statu-\nreport.                                                   tory purpose. The Plan also identified several\n                                                          core values that are fundamental to the OIG\n    At the end of the semiannual reporting pe-            accomplishing its mission and conducting its\nriod, the OIG had already received four reports           daily operations, which include: integrity, fair-\nthrough the new hotline. The OIG immedi-                  ness, relevancy, communication, and compe-\nately began to review and assess these sugges-            tency. Further, the Plan discussed the significant\ntions. During the next reporting period, the              expansion anticipated in the Commission\xe2\x80\x99s staff\nOIG plans to implement a program, in accor-               and resources as the agency continues to reform\ndance with Section 966 of the Dodd-Frank Act,             and improve the manner in which it operates in\nto provide non-monetary recognition to SEC                an environment of increased scrutiny, and how\nemployees who make suggestions that increase              the OIG plans to adjust its activities in light of\nthe work efficiency, effectiveness, or productivity       this expansion.\nof the Commission, or reduce waste, abuse,\nmisconduct, or mismanagement within the                       In addition, the Plan set forth three specific\nCommission.                                               goals the OIG has adopted in order to accom-\n                                                          plish its vision, as well as specific objectives\n                                                          enumerated under each goal. The three goals\nOIG Five Year Strategic Plan                              are:\n\n    During the reporting period, the OIG final-              Goal 1: Improve the Economy, Efficiency\nized and issued its Strategic Plan (Plan) for Fis-           and Effectiveness of SEC Programs and\ncal Years 2010 to 2015, which describes the                  Operations\nOIG\xe2\x80\x99s goals and objectives and presents meas-\nures that the OIG will use to gauge its                      Goal 2: Enhance the Efficiency and Effec-\nperformance. In the course of finalizing the                 tiveness of the SEC OIG\xe2\x80\x99s Operations and\nPlan, the Deputy Inspector General oversaw                   Communications\nefforts to review the OIG\xe2\x80\x99s previous strategic               Goal 3: Promote the Integrity, Efficiency\nplan and to make necessary changes and im-                   and Effectiveness of the SEC by Keeping\nprovements. One focus of those efforts was to                Congress and the Public Informed\nmake certain that the OIG\xe2\x80\x99s internal processes\n\n\n\n                                                      4\n\x0c    Finally, the Plan noted that, consistent with       chyk clerked for a senior judge on the U.S.\nthe requirements of the Government                      Court of Appeals for the Third Circuit. He\nPerformance and Results Act, the OIG has es-            also has extensive experience on Capitol Hill,\ntablished performance indicators to help meas-          having worked for the U.S. House of Represen-\nure how well the OIG is achieving the afore-            tatives Committee on the Judiciary, and the per-\nmentioned goals. These performance indicators           sonal staff of both a Member of the House of\ninclude both (1) output measures, such as the           Representatives and a U.S. Senator. Mr. Kozol-\nnumber, quality and complexity of the audit,            chyk is a 1998 graduate of the University of\nevaluation and investigative reports issued, and        Arizona, where he received Bachelor of Arts\nthe number of recommendations implemented               degrees in Political Science and Philosophy. He\nby the agency; and (2) outcome measures, such           received his Juris Doctor degree from University\nas the extent to which the OIG effects positive         of Maryland, Baltimore School of Law in 2006.\nchange in the agency and stakeholder needs are\nmet in a timely manner.                                     In July 2010, Kelli Brown-Barnes joined the\n                                                        OIG as an Audit Manager. Ms. Brown-Barnes\n                                                        comes to us from the SEC\xe2\x80\x99s Division of Trading\nOIG Staffing                                            and Markets, where she served as an Automated\n                                                        Review Policy Specialist and spent nine years\n    During the reporting period, the OIG                conducting inspections of Self-Regulatory and\nadded two auditors, an attorney-advisor and a           Clearing Organizations. Ms. Brown-Barnes is a\nlegal assistant, thereby further increasing its ca-     graduate of Bowie State University, where she\npacity to conduct its oversight responsibilities.       received both her Bachelor\xe2\x80\x99s degree in Business\n                                                        Administration and Master\xe2\x80\x99s degree in Adminis-\n     In April 2010, Andrea Holmes joined the            trative Management.\nOIG as an Audit Manager. Ms. Holmes comes\nto us from the Department of Housing and Ur-                In August 2010, Suh-Young Lauren Hong\nban Development (HUD), where she spent 20               joined the OIG as a legal assistant. Ms. Hong\nyears in various staff positions at the headquar-       worked most recently as the Director of Con-\nters and field office level. While at HUD, Ms.          tracts for a professional IT services provider,\nHolmes served as an Operating Accountant,               where she provided advice on numerous con-\nSystems Accountant, and Management Analyst.             tracts and compliance issues concerning labor\nShe performed management reviews of agency              and employment law. Ms. Hong received a\nfield offices to assess the effectiveness of internal   Bachelor of Arts degree from the Ewha\ncontrols, made recommendations to improve               Woman\xe2\x80\x99s University in Seoul, Korea in 1998,\nfinancial accounting systems, and reconciled            and a Master\xe2\x80\x99s degree from the Sogang Gradu-\nobligation, disbursement, and accrual transac-          ate School of International Studies in Seoul,\ntions for a major housing loan program. Ms.             Korea, in 2001, graduating with 4.00 GPA. In\nHolmes is a Certified Public Accountant and             2009, she obtained her Juris Doctor degree\nmember of the American Institute of Certified           from the American University Washington Col-\nPublic Accountants.                                     lege of Law.\n\n    In April 2010, Raphael Kozolchyk joined                 Finally, one of our audit managers, Renee\nthe OIG as an attorney-advisor. Prior to joining        Stroud, left the OIG during the reporting pe-\nthe OIG, Mr. Kozolchyk was General Counsel              riod for another position within the SEC. In\nto the Personal Watercraft Industry Association,        addition, two contractors, who worked for the\na division of the National Marine Manufactur-           OIG in temporary positions, Verngina Smith\ners Association, where he managed the legisla-          and Natasha Dandridge, left for other opportu-\ntive and legal affairs of the trade association.        nities.\nBefore working for the association, Mr. Kozol-\n\n                                                   5\n\x0c\x0cU.S. Securities and Exchange Commission\n                                                                       SEMIANNUAL\n                                                                       REPORT TO\n                                                                       CONGRESS\n                                                Office of\n                                               Inspector\n                                                General\n\n\n\n\n                                          CONGRESSIONAL AND OTHER\n                                          RELATED TESTIMONY, REQUESTS,\n                                          AND BRIEFINGS\n                                              During the reporting period, the OIG          suant to Public Law No. 111-21, the Fraud\n                                          continued to keep the Congress fully and          Enforcement and Recovery Act of 2009, to\n                                          currently informed of the OIG\xe2\x80\x99s                   examine the causes, both domestic and\n                                          investigations, audits and other activities, as   global, of the current financial and eco-\n                                          well as proposals for legislative improve-        nomic crisis in the U.S. The IG\xe2\x80\x99s testimony\n                                          ments, through testimony and numerous             and certain other requests and briefings are\n                                          meetings and written and telephonic com-          discussed in detail below.\n                                          munications. Many of these communica-\n                                          tions related to the OIG\xe2\x80\x99s investigation per-     Inspector General Testimony\n                                          taining to the SEC\xe2\x80\x99s response to concerns\n                                          regarding Robert Allen Stanford\xe2\x80\x99s alleged             The IG testified before both the U.S.\n                                          Ponzi scheme, which was completed during          Senate Committee on Banking, Housing\n                                          the previous reporting period, as well as         and Urban Affairs (Senate Banking Com-\n                                          requests related to other previously-             mittee) and the FCIC during the reporting\n                                          completed investigations and requests for         period.\n                                          additional investigative work. The Inspector\n                                          General (IG) also had extensive communica-            On September 22, 2010, the IG testified\n                                          tions with Members of Congress concern-           before the U.S. Senate Committee on Bank-\n                                          ing specific legislative provisions that would    ing, Housing and Urban Affairs (Senate\n                                          impact the SEC, the SEC OIG and other             Banking Committee) on the subject of\n                                          IGs, including the sweeping financial reform      \xe2\x80\x9cOversight of the SEC\xe2\x80\x99s Inspector General\xe2\x80\x99s\n                                          legislation that was debated and enacted          Report on the \xe2\x80\x98Investigation of the SEC\xe2\x80\x99s\n                                          during the reporting period. Further, the         Response to Concerns Regarding Robert\n                                          SEC IG briefed the staff of, and testified        Allen Stanford\xe2\x80\x99s Alleged Ponzi Scheme\xe2\x80\x99 and\n                                          before, the Financial Crisis Inquiry Com-         Improving SEC Performance.\xe2\x80\x9d The OIG\xe2\x80\x99s\n                                          mission (FCIC), which was established pur-        Report of Investigation (OIG-526) was is-\n\n\n\n\n                                                                                       7\n\x0csued on March 31, 2010, and was discussed in              posit (CDs) Stanford was promoting could not\ndetail in the OIG\xe2\x80\x99s Semiannual Report to Con-             have been legitimate, and that it was highly un-\ngress for the period ending March 31, 2010. In            likely the returns Stanford claimed to generate\nhis testimony before the Senate Banking Com-              could have been achieved with the purported\nmittee, the IG provided a briefing on the com-            conservative investment approach utilized. The\nprehensive investigation the OIG conducted, at            IG provided detailed information regarding\nthe request of the Committee\xe2\x80\x99s Ranking Mem-               each of the four examinations conducted in\nber, the Honorable Richard Shelby (R-                     1997, 1998, 2002 and 2004, which concluded in\nAlabama), and the Honorable David Vitter (R-              each instance that Stanford\xe2\x80\x99s CDs were likely a\nLouisiana), into the handling of the SEC\xe2\x80\x99s in-            Ponzi or similar fraudulent scheme, with the\nvestigation into Robert Allen Stanford (Stan-             only difference being that the potential fraud\nford) and his various companies, including the            continued to grow exponentially, from $250 mil-\nhistory of all the SEC\xe2\x80\x99s investigations and               lion to $1.5 billion.\nexaminations regarding Stanford.\n                                                              The IG\xe2\x80\x99s testimony also discussed in detail\n    The IG provided a synopsis of the extensive           multiple complaints received by the SEC from\nwork performed during the course of the inves-            outside entities that reinforced and bolstered the\ntigation, including: (1) requests for and search          examiners\xe2\x80\x99 suspicions about Stanford\xe2\x80\x99s opera-\nof approximately 2.7 million e-mails; (2) review          tions, and the SEC\xe2\x80\x99s failure to follow up on\nand analysis of documents produced in response            these complaints or to take any action to investi-\nto the OIG\xe2\x80\x99s comprehensive document requests              gate them. The IG described the multiple ef-\nto the Division of Enforcement (Enforcement)              forts made by the Fort Worth Examination\nand the Office of Compliance, Inspections and             group after each examination of Stanford\xe2\x80\x99s op-\nExaminations (OCIE), as well as outside entities,         erations to convince the Enforcement group to\npertaining to the SEC\xe2\x80\x99s examinations, inquires            open and conduct an investigation of Stanford,\nand investigations of Stanford and his firms be-          and the failure of the Enforcement group to\ntween 1997 and 2009; and (3) 51 testimonies               make any meaningful effort to investigate the\nand interviews of 48 individuals with knowledge           potential fraud until late 2005. In addition, the\nof facts or circumstances surrounding the SEC\xe2\x80\x99s           IG observed that even after the Enforcement\nexaminations and/or investigations of Stanford            group agreed in late 2005 to seek a formal order\nand his firms.                                            from the Commission to investigate Stanford,\n                                                          they missed an opportunity to have the SEC\n     The IG then briefed the Senate Banking               bring an action based upon the admitted failure\nCommittee on the results of the OIG\xe2\x80\x99s investi-            to conduct any due diligence regarding Stan-\ngation, as contained in a report of investigation         ford\xe2\x80\x99s investment portfolio.\nthat included over 150 pages of analysis and\n200 exhibits, which was issued to the SEC                     The IG further briefed the Senate Banking\nChairman on March 31, 2010. The IG in-                    Committee on the OIG\xe2\x80\x99s overall finding that\nformed the Senate Banking Committee that the              SEC-wide institutional influence had factored\nOIG\xe2\x80\x99s investigation determined that the SEC\xe2\x80\x99s             into the Enforcement group\xe2\x80\x99s repeated decisions\nFort Worth Regional Office was aware since                not to undertake a full and thorough investiga-\n1997 that Stanford was likely operating a Ponzi           tion of Stanford, notwithstanding staff aware-\nscheme, having come to that conclusion a mere             ness that the potential fraud was growing. In\ntwo years after Stanford\xe2\x80\x99s investment adviser             particular, the IG mentioned the perception of\nregistered with the SEC in 1995. The IG also              senior Fort Worth officials that they were being\ntestified that over the next eight years, the SEC\xe2\x80\x99s       judged on the numbers of cases brought, so-\nFort Worth Examination group conducted four               called \xe2\x80\x9cstats,\xe2\x80\x9d which resulted in cases like Stan-\nexaminations of Stanford\xe2\x80\x99s operations, finding            ford, which were not considered \xe2\x80\x9cquick-hit\xe2\x80\x9d or\nin each examination that the certificates of de-          \xe2\x80\x9cslam-dunk\xe2\x80\x9d cases, not being encouraged. The\n\n                                                      8\n\x0cIG also discussed the evidence obtained during        Stearns) and other CSE program participants.\nthe OIG\xe2\x80\x99s investigation showing that a former         The CSE program had been created in 2004 to\nhead of Enforcement in Fort Worth, who played         allow the SEC to supervise certain broker-\na significant role in multiple decisions over the     dealer holding companies on a consolidated ba-\nyears to quash investigations of Stanford,            sis. In response to a request from the Honor-\nsought to represent Stanford on three separate        able Charles E. Grassley (R-Iowa), Ranking\noccasions after he left the Commission and, in        Member of the U.S. Senate Committee on Fi-\nfact, represented Stanford briefly in 2006 before     nance, the OIG conducted two audits that ana-\nthe SEC Ethics Office informed him that such          lyzed the CSE program as it related to Bear\nrepresentation was improper.                          Stearns and the SEC Division of Trading and\n                                                      Markets\xe2\x80\x99 (TM\xe2\x80\x99s) broker-dealer risk assessment\n      In addition to describing the findings of the   program. Both of these audits were completed\nOIG investigation, the IG briefed the Senate          on September 25, 2008, and were discussed in\nBanking Committee on the recommendations              detail in the OIG\xe2\x80\x99s Semiannual Report to Con-\nthe OIG made in its report of investigation.          gress for the period ending September 30, 2008.\nThese recommendations included that the SEC\nChairman carefully review the report\xe2\x80\x99s findings           The IG\xe2\x80\x99s testimony before the FCIC fo-\nand share with Enforcement management the             cused particularly on the audit the OIG con-\nportions of the report that related to the            ducted pertaining to the CSE program as it\nperformance failures by those employees who           related to Bear Stearns (Report No. 446-A).\nstill work at the SEC, so appropriate action          The IG briefed the FCIC on the audit objec-\nwould be taken, on an employee-by-employee            tives and the work performed during the audit,\nbasis, to ensure that future decisions about when     including the assistance provided by OIG expert\nto open an investigation and when to recom-           Albert S. (Pete) Kyle, a faculty member at the\nmend the Commission take action are made in           University of Maryland and a renowned expert\na more appropriate and timely manner. The IG          on many aspects of capital markets.\nalso advised the Senate Banking Committee of\nnine specific recommendations from the OIG\xe2\x80\x99s              The IG then discussed the audit\xe2\x80\x99s findings\ninvestigative findings designed to improve the        which included the identification of significant\noperations of several SEC divisions and offices,      deficiencies in the CSE program that warranted\nas well as the improvements the SEC had begun         improvement. The IG described the audit\xe2\x80\x99s\nto make in order to implement these recom-            overall finding that there were significant ques-\nmendations. The IG apprised the Committee             tions about the adequacy of a number of the\nthat the OIG provided the report to the SEC\xe2\x80\x99s         CSE program requirements, given that Bear\nEthics Counsel for referral to the bars of the        Stearns was compliant with several of these re-\ntwo states in which the former head of                quirements but nonetheless collapsed. He also\nEnforcement in Forth Worth was admitted to            noted the audit\xe2\x80\x99s findings that prior to Bear\npractice law. Finally, the IG identified some         Stearns\xe2\x80\x99 collapse, TM became aware of numer-\nparallels between the SEC\xe2\x80\x99s handling of the           ous potential red flags relating to Bear Stearns,\nStanford matter and its failure to uncover Ber-       but did not take actions to limit these risk fac-\nnard Madoff \xe2\x80\x99s Ponzi scheme. The full text of         tors, and that internal SEC procedures and\nthe IG\xe2\x80\x99s written testimony is contained in Ap-        processes were not strictly followed. The IG\npendix B to this Semiannual Report.                   informed the FCIC of 11 separate specific con-\n                                                      cerns with the Commission\xe2\x80\x99s oversight of the\n    On May 5, 2010, the IG testified before the       CSE program that were identified during the\nFCIC on the implementation of the SEC\xe2\x80\x99s               audit.\nConsolidated Supervised Entities (CSE) pro-\ngram and the adequacy of the SEC\xe2\x80\x99s oversight              Additionally, the IG described for the FCIC\nof the Bear Stearns Companies, Inc. (Bear             26 recommendations made by the OIG to im-\n\n                                                  9\n\x0cprove the Commission\xe2\x80\x99s oversight of the CSE           stances surrounding the Commission\xe2\x80\x99s negotia-\nfirms. The IG reported that on September 26,          tions with Goldman and subsequent settlement.\n2008, one day after the OIG issued its final          The IG wrote to Congressman Issa on July 22,\naudit report, former SEC Chairman Christo-            2010, indicating that the OIG would broaden\npher Cox announced that TM would end the              its current investigation as requested. The OIG\nCSE program. However, the IG noted that,              completed its investigation entitled, Allegations of\nnotwithstanding the closure of the program, the       Improper Coordination Between the SEC and Other\nSEC has made efforts to implement the OIG\xe2\x80\x99s           Governmental Entities Concerning the SEC\xe2\x80\x99s\nrecommendations in order to improve its opera-        Enforcement Action Against Goldman Sachs & Co., on\ntions. The IG informed the FCIC that, as of           September 30, 2010, and that investigation is\nMarch 31, 2010, management had completed              described in detail in the Investigations and In-\nimplementation of 23 of the OIG\xe2\x80\x99s 26 recom-           quiries Conducted Section of this Report.\nmendations. The full text of the IG\xe2\x80\x99s written\ntestimony is contained in Appendix C to this               On April 23, 2010, the IG also received a\nSemiannual Report.                                    letter from Senator Grassley, which enclosed an\n                                                      anonymous complaint concerning an SEC su-\n                                                      pervisor who, during a previous reporting pe-\nOther Requests and Briefings                          riod, was found by the OIG to have engaged in\n                                                      inappropriate use of SEC computer resources.\n     During the reporting period, the IG re-          Senator Grassley requested that the IG take ap-\nceived correspondence from Members of Con-            propriate action to review and evaluate the mer-\ngress, requesting that the OIG undertake              its of the allegations and to report the results to\ninvestigations into particular matters. For ex-       Congress. The IG responded to Senator Gras-\nample, on April 23, 2010, the IG received a let-      sley on April 23, 2010, informing him that the\nter from the Honorable Darrell Issa (R-               OIG had received the same anonymous com-\nCalifornia), Ranking Member of the U.S.               plaint and had already begun to investigate the\nHouse of Representatives Committee on Over-           matter. The OIG\xe2\x80\x99s investigation into the com-\nsight and Government Reform, requesting that          plaint about the supervisor is ongoing and is\nthe OIG conduct a thorough and independent            discussed in the Pending Investigations Section\ninvestigation into the filing of the SEC\xe2\x80\x99s civil      of this Report.\nsecurities fraud action against Goldman Sachs\n& Co. (Goldman) in the Southern District of               On June 14, 2010, Senator Grassley wrote\nNew York on April 16, 2010. On April 25,              to the IG, noting that in recent reports the OIG\n2010, the IG replied to Congressman Issa\xe2\x80\x99s let-       had highlighted problems associated with the\nter and informed him that the OIG had opened          revolving door between working at the SEC and\nan investigation into the allegations described in    working in the securities industry, which the\nhis April 23, 2010 letter.                            SEC is charged with regulating. Senator Gras-\n                                                      sley stated that the Wall Street Journal had re-\n    Subsequent to the commencement of the             ported that \xe2\x80\x9cthe speed at which the door re-\nOIG\xe2\x80\x99s investigation in the Goldman matter,            volves can be swift,\xe2\x80\x9d and quoted various exam-\nCongressman Issa again wrote to the IG on July        ples from the Wall Street Journal article. Senator\n22, 2010. In that letter, Congressman Issa            Grassley\xe2\x80\x99s letter further noted a recent situation\nraised questions regarding the timing of the set-     when an SEC senior official left the SEC to\ntlement of the SEC\xe2\x80\x99s suit against Goldman,            work for a firm that is regulated by the SEC.\nwhich came within two hours after the U.S.            Senator Grassley requested a summary of the\nSenate passed financial reform legislation.           matters the OIG had reviewed that raised re-\nCongressman Issa requested that the OIG               volving door issues and asked the OIG to con-\nbroaden its existing investigation into the SEC\xe2\x80\x99s     duct a review of the circumstances surrounding\nsuit against Goldman to include the circum-\n\n                                                 10\n\x0cthe senior official\xe2\x80\x99s departure and disclose the        audit recommendations that remained unim-\nresults of that review.                                 plemented and other matters.\n\n    On June 15, 2010, the IG replied to Senator             On April 22, 2010, the IG received a re-\nGrassley\xe2\x80\x99s June 14, 2010 letter. In his response,       quest from Senator Grassley for additional\nthe IG described in detail previous OIG                 information pertaining to OIG investigations of\ninvestigations, in addition to the ones identified      SEC employees who inappropriately accessed\nin Senator Grassley\xe2\x80\x99s letter, that had found con-       pornographic materials from their government\ncerns associated with SEC employees who rep-            computers that were described in the OIG\xe2\x80\x99s\nresented individuals or entities in matters pend-       previous semiannual reports to Congress. On\ning before the SEC after leaving government             April 22, 2010, the IG provided Senator Gras-\nwork. The IG also discussed the OIG\xe2\x80\x99s ongoing           sley with the requested summary, which re-\nwork in this area and notified Senator Grassley         ported, among other things, that during the past\nthat the OIG had already commenced an inves-            five years the SEC OIG had substantiated that\ntigation into the circumstances surrounding the         33 SEC employees or contractors had viewed\ndeparture of the senior official to work for the        pornographic, sexually explicit or sexually sug-\nregulated entity. This investigation is ongoing         gestive images using government computer re-\nand is discussed in the Pending Investigations          sources and official time, and that 17 of these\nSection of this Report.                                 employees were at a grade level SK-14 or\n                                                        above. On April 27, 2010, the IG provided\n     On August 23, 2010, Senator Grassley and           information pertinent to the disciplinary actions\nCongressman Issa provided a letter to the IG,           taken by the SEC in the 33 cases identified by\nnoting that recent press reports had revealed a         the OIG in response to a request from Senator\n\xe2\x80\x9cnew layer of political review\xe2\x80\x9d in one federal          Grassley for additional information. The IG\ndepartment\xe2\x80\x99s processes for responding to Free-          also reported to Senator Grassley regarding\ndom of Information Act (FOIA) requests. Spe-            various measures taken by the SEC and the\ncifically, Senator Grassley and Congressman             OIG in order to prevent future violations of this\nIssa requested that the SEC IG conduct an in-           nature.\nquiry to determine whether, and if so, the ex-\ntent to which, political appointees as the SEC              On April 14, 2010, the IG responded to a\nare made aware of information requests and              March 24, 2010 letter from Congressman Issa\nhave a role in request reviews and decision-            that requested updated information concerning\nmaking.                                                 the SEC OIG\xe2\x80\x99s open and unimplemented rec-\n                                                        ommendations, as well as suggestions for legisla-\n    On September 14, 2010, the IG wrote to              tive improvements to the Inspector General Act\nSenator Grassley and Congressman Issa, in-              of 1978 (IG Act), or the Inspector General Re-\nforming them that the OIG had opened an in-             form Act of 2008 (Reform Act). In his response\nvestigation into the impact, if any, of political       to Congressman Issa, the IG provided\nappointees on the FOIA process at the SEC.              information on the SEC\xe2\x80\x99s open and unimple-\nThe IG stated that the OIG planned to conduct           mented recommendations, including those with\na thorough and comprehensive investigation of           estimated cost savings, as well as those that the\nthe matter and detailed the investigative work          SEC OIG deemed to be the three most impor-\nperformed to date. The OIG\xe2\x80\x99s investigation is           tant open and unimplemented recommenda-\nongoing and is discussed in the Pending                 tions as of April 1, 2010. These included rec-\nInvestigations Section of this Report.                  ommendations that (1) OCIE establish a proto-\n                                                        col for identifying red flags and potential viola-\n   The IG also received correspondence from             tions of securities laws based upon an evalua-\nMembers of Congress requesting information              tion of information found in news reports and\nabout previous OIG investigative work, OIG              relevant industry sources; (2) Enforcement put\n\n                                                   11\n\x0cin place policies and procedures or training          informed the Senators that the OIG places a\nmechanisms to ensure staff have an understand-        great deal of importance on transparency and\ning of the types of information that should be        strives to keep the Congress and the public in-\nvalidated with independent parties during             formed of the Office\xe2\x80\x99s significant activities. The\ninvestigations; and (3) Enforcement develop           IG stated that the OIG\xe2\x80\x99s semiannual reports to\nwritten in-depth triage analysis steps for com-       Congress described all investigations, audits and\nplaints relating to naked short selling. In re-       evaluations conducted by the Office during the\nsponse to Congressman Issa\xe2\x80\x99s request for sug-         reporting period, as well as all other matters of\ngestions for improvements to the IG Act and the       interest that occurred during the period. Fi-\nReform Act, the IG referenced his March 25,           nally, the IG noted that all audits and evaluation\n2009 testimony before the Subcommittee on             reports, investigative memoranda and\nGovernment Management, Organization and               management alerts are posted to the OIG\xe2\x80\x99s\nProcurement of the U.S. House of Representa-          website, which also contains links to OIG inves-\ntives Committee on Oversight and Government           tigative reports that the SEC has posted in re-\nReform, in which he set forth certain improve-        dacted form pursuant to the FOIA.\nments that he believed would strengthen the\nIGs and assist them in carrying out their critical         In addition, during the reporting period, the\nwork.                                                 IG conducted numerous briefings of, and had\n                                                      discussions with, Members of Congress and\n    On June 1, 2010, the IG responded to an           their staffs about a wide variety of issues. On\nApril 8, 2010 request from Senator Grassley           April 21, 2010, the IG briefed Senator Vitter\nand the Honorable Tom Coburn (R-                      and his staff concerning the OIG\xe2\x80\x99s investigation\nOklahoma), Ranking Member, Permanent Sub-             in the Stanford matter and the related findings\ncommittee on Investigations of the U.S. Senate        and recommendations. The IG also partici-\nCommittee on Homeland Security and Gov-               pated in briefings and discussions pertaining to\nernmental Affairs, requesting, among other            various provisions of the financial reform legis-\nthings: (1) information on instances when the         lation, including a provision that would have\nagency resisted and/or objected to oversight          required Presidential appointment and Senate\nactivities or restricted the OIG\xe2\x80\x99s access to          confirmation of the IGs of several of the finan-\ninformation from October 1, 2008 to April 8,          cial regulatory agencies, including the SEC.\n2010; and (2) all closed investigations, audits       Specifically, the IG met with Congressional staff\nand evaluations conducted by the SEC OIG              on the financial regulatory reform legislation on\nthat were not disclosed to the public for the pe-     April 7, 2010, and April 13, 2010, and also\nriod of January 1, 2009 through April 30, 2010.       provided suggestions for various alternative pro-\nIn his June 1, 2010 response, the IG advised the      visions. Further information regarding the IG\xe2\x80\x99s\nSenators that the SEC OIG had no instances to         comments on legislative proposals is contained\nreport for the period from October 1, 2008 to         in the Review of Legislation and Regulations\nApril 8, 2010, in which the SEC resisted and/or       Section of this Report.\nobject to oversight activities and/or restricted\nthe OIG\xe2\x80\x99s access to information. The IG also\n\n\n\n\n                                                 12\n\x0cU.S. Securities and Exchange Commission\n                                                                     SEMIANNUAL\n                                                                     REPORT TO\n                                                Office of\n                                               Inspector\n                                                General\n                                                                     CONGRESS\n                                          THE INSPECTOR GENERAL\xe2\x80\x99S\n                                          STATEMENT ON THE SEC\xe2\x80\x99S\n                                          MANAGEMENT AND PERFORMANCE\n                                          CHALLENGES\n                                               As required by the Reports Consolidation        pleted, and the SEC\xe2\x80\x99s procurement and con-\n                                          Act of 2000 and Office of Management and             tracting function continues to be a\n                                          Budget guidance, I am pleased to submit the          management challenge.\n                                          following statement summarizing what I con-\n                                          sider to be the most serious management chal-            The Office of Acquisitions (OA), within\n                                          lenges facing the Securities and Exchange            the SEC\xe2\x80\x99s Office of Administrative Services\n                                          Commission. This statement has been com-             (OAS), is in the process of fully automating its\n                                          piled based on OIG audits, investigations,           procurement and contracting function after\n                                          evaluations, and general knowledge of the            two previous failed attempts to implement an\n                                          agency\xe2\x80\x99s operations.                                 automated procurement system. OA reports\n                                                                                               that it has successfully implemented the first\n                                                                                               phase of its new automated procurement sys-\n                                          CHALLENGE:                                           tem, which is named PRISM. However, the\n                                          PROCUREMENT AND CONTRACTING                          second phase of the PRISM project (which\n                                                                                               involves the integration of PRISM and Mo-\n                                              The OIG first identified the SEC\xe2\x80\x99s pro-          mentum, the SEC\xe2\x80\x99s financial system) has yet to\n                                          curement and contracting function as a               be completed, and we understand that the\n                                          management challenge in Fiscal Year (FY)             SEC is experiencing delays with this phase of\n                                          2008. In FY 2009, we reported that this area         the project.\n                                          continued to be a management challenge, al-\n                                          though SEC management had represented                     During Fiscal Year 2010, the OIG con-\n                                          significant improvements had been made.              ducted work in the procurement area that\n                                          While management reports that additional             identified a number of problems and need for\n                                          improvements were made in the procurement            increased management controls. Specifically,\n                                          and contracting area during FY 2010, the             the OIG issued Management and Oversight of In-\n                                          SEC\xe2\x80\x99s efforts in this area have not been com-        teragency Acquisition Agreements at the SEC, Report\n\n\n                                                                                          13\n\x0cNo. 460, in March 2010, and Review of PRISM                quate segregation of duties in the management\nAutomated Procurement System Support Contracts, Re-        of the support contract; and (4) a critical deliv-\nport No. 486, in September 2010.                           erable under the support contract did not meet\n                                                           quality standards.\n    In OIG Report No. 460, an OIG audit\nidentified numerous specific areas in which OA                 In addition, several recommendations made\nneeded to improve its processes and procedures             in an OIG audit report issued in September\nregarding interagency acquisition agreements               2009, Audit of the Office of Acquisitions Procurement\n(IAAs), i.e., vehicles through which the SEC ob-           and Contract Management Function, OIG Report\ntains needed goods or services from or through             No. 471, have yet to be completed and remain\nanother federal agency, in a variety of ways.              pending. These include recommendations\nSignificantly, our audit found that OA did not             related to determining the universe of SEC\nhave a complete, accurate list of the universe of          contracts, completion of the automation of the\nthe SEC\xe2\x80\x99s IAAs and had no centralized method               SEC\xe2\x80\x99s procurement and contracting function,\nfor accurately tracking the SEC\xe2\x80\x99s IAAs, al-                providing adequate training to regional office\nthough the agency is in the process of imple-              staff with delegated warrant authority, and re-\nmenting such a system through the PRISM pro-               porting regional activities in the Federal Pro-\nject. Our audit also found that OA lacked SEC-             curement Data System.\nspecific written internal policies and procedures\nfor administering and overseeing IAAs. In addi-                Therefore, while the SEC continues to make\ntion, our audit identified 23 SEC IAAs for                 improvements in the procurement and contract-\nwhich the period of performance had expired,               ing area, further progress is needed to ensure\nbut that $6.9 million in funds remained obli-              that the SEC has a well-designed and fully func-\ngated on these IAAs. We further found that OA              tioning system in place for the proper oversight\nlacked crucial information to review IAA cost              of all SEC contracts and interagency acquisi-\nestimates, and that the Statement of Work for a            tions.\nlarge IAA did not conform to the guidance for\nthe underlying program. While OA has submit-\nted proposals to implement the recommenda-                 CHALLENGE:\ntions for improvement made in the OIG\xe2\x80\x99s audit              INFORMATION TECHNOLOGY\nreport, the majority of the report\xe2\x80\x99s 15 recom-             MANAGEMENT\nmendations remain pending. Management has,\nhowever, informed us that they have made ef-                   IT management remains a management\nforts to deobligate the funds we identified, and           challenge for the SEC. In connection with its\nhas already deobligated over $4 million of these           audit of the SEC\xe2\x80\x99s financial statements for FY\nfunds.                                                     2009, the Government Accountability Office\n                                                           (GAO) reported that information security con-\n     More recently, in OIG Report No. 468, an              trol weaknesses continued to jeopardize the\nOIG audit identified significant contract ad-              confidentiality, integrity, and availability of\nministration issues pertaining to PRISM and                information processed by the SEC\xe2\x80\x99s key IT fi-\nrelated support and service contracts. The                 nancial reporting systems. The GAO identified\naudit found that (1) the PRISM project lacked              inadequate controls for segregating computer-\nadequate Information Technology (IT) project               related duties and functions; restricting user\nmanagement oversight; (2) OA improperly re-                privileges; implementing patches and current\nstricted competition without following Federal             software versions; using approved, secure means\nAcquisition Regulation (FAR) requirements                  to transmit data; implementing configuration\nwhen it solicited and awarded a contract for               management; and certifying and accrediting the\nproject support services; (3) there was an inade-          SEC\xe2\x80\x99s general ledger and supporting processes.\n\n\n\n                                                      14\n\x0c    In FY 2010, the OIG conducted work that              to unapproved resources; and newly-deployed\nconfirmed that the SEC continues to require              desktops/laptops were not adequately config-\nimprovements in several IT-related areas identi-         ured to meet Federal Desktop Core Configura-\nfied by GAO. These areas include: restricting            tion requirements. The Office of Information\nuser privileges, implementing patches and cur-           Technology and Office of the Chief Operating\nrent software versions, ensuring the use of ap-          Officer have indicated that they concur with the\nproved means to transmit data, and configura-            majority of the report\xe2\x80\x99s recommendations and\ntion management. These findings are based on             fully support the obligation of the SEC to pro-\nour reviews of three specific areas of IT                tect the privacy of individuals.\nmanagement. The OIG issued one report on\nthe SEC\xe2\x80\x99s encryption program, Evaluation of the               The OIG\xe2\x80\x99s audit, entitled Assessment of the\nSEC Encryption Program, Report No. 476, in               SEC Information Technology Investment Process, Re-\nMarch 2010; two reports pertaining to privacy,           port No. 466, found that the Chief Information\nEvaluation of the SEC Privacy Program, Report No.        Officer (CIO) continues to lack necessary\n475, in March 2010 and Assessment of the SEC\xe2\x80\x99s           authority to manage the SEC\xe2\x80\x99s Capital Plan-\nPrivacy Program, Report No. 485, in September            ning and Investment Control (CPIC) process\n2010; and one report on the IT investment                adequately, CPIC policies and procedures were\nprocess, Assessment of the SEC Information               not being followed, and IT projects were im-\nTechnology Investment Process, Report No. 466, in        properly managed due to the lack of effective\nMarch 2010.                                              project management. The SEC Chairman and\n                                                         OIT concurred with all of the report\xe2\x80\x99s recom-\n    The OIG\xe2\x80\x99s Evaluation of the SEC Encryption           mendations, and the Chairman reported that\nProgram, Report No. 476, found that while the            the charters for the agency\xe2\x80\x99s three distinct bod-\nSEC has a comprehensive encryption program,              ies that review and approve proposed IT in-\nmobile devices and portable media have not               vestments have been revised as a result of an\nbeen properly encrypted. The OIG report also             internal review of roles and responsibilities re-\nfound that the SEC\xe2\x80\x99s Office of Information               lating to the SEC\xe2\x80\x99s IT investments.\nTechnology (OIT) has not implemented a pol-\nicy for encrypting portable media throughout                 Finally, the OIG found that additional at-\nSEC headquarters and regional offices.                   tention is still needed in specific key IT areas,\n                                                         including the administration and oversight of\n    The OIG\xe2\x80\x99s Evaluation of the SEC Privacy Pro-         IT contracts, IT human capital, remote access,\ngram, Report No. 475, found that the SEC\xe2\x80\x99s               and operations monitoring. These key initia-\nprivacy-related policies and procedures need to          tives remain challenges as deficiencies that were\nbe finalized and that an in-depth assessment of          identified in these areas in the past have not\nthe SEC\xe2\x80\x99s privacy program was required. In               been completely mitigated. During the past FY,\naccordance with the findings of Report No.               the SEC filled two essential senior management\n475, the OIG conducted an in-depth assess-               positions: Chief Security Officer (CISO) and\nment of the SEC\xe2\x80\x99s privacy program and re-                Chief Operating Officer (COO). Nonetheless,\ncently issued its report, Assessment of the SEC\xe2\x80\x99s        the critical CIO position is currently vacant.\nPrivacy Program, Report No. 485. This report             This position is essential to the SEC\xe2\x80\x99s IT pro-\nidentified significant concerns with the manner          gram and should be filled expeditiously. The\nin which the SEC handles personally identifi-            OIG plans to continue its oversight of IT\nable information. Specifically, the OIG found            management and monitoring progress in key\nthat OIT has not adequately implemented con-             areas noted above.\ntrols to restrict user access privileges to sensitive\ndata; patches and current software versions\nwere not current; sensitive data was transmitted\n\n\n                                                    15\n\x0cCHALLENGE:                                             preparation of labor surveys; (6) Prompt Pay-\nFINANCIAL MANAGEMENT                                   ment Act interest payments; (7) excessive user\n                                                       access rights in the SEC\xe2\x80\x99s time and attendance\n    The GAO\xe2\x80\x99s FY 2009 audit of the                     system; (8) financial statement closing schedule;\nCommission\xe2\x80\x99s financial statements found that           (9) documentation of Contracting Officer\xe2\x80\x99s\nthey were fairly presented in all material re-         Technical Representative\xe2\x80\x99s review of contrac-\nspects. However, the GAO found that the SEC            tor\xe2\x80\x99s invoices prior to SEC payment; and (10)\ndid not maintain effective internal controls over      notes to interim financial statements and pro-\nfinancial reporting and, thus, did not have rea-       forma financial reporting.\nsonable assurance that misstatements would be\nprevented or detected on a timely basis. This              In addition, the GAO reported that the\ndetermination was based on the GAO\xe2\x80\x99s identifi-         SEC\xe2\x80\x99s ability to sustain effective internal control\ncation of six significant internal control defi-       over financial reporting was at risk due to its\nciencies in the Commission\xe2\x80\x99s financial reporting       continued reliance on processes and systems\nprocess that, taken collectively, constituted a        that were not designed to provide the accurate,\nmaterial weakness in the SEC\xe2\x80\x99s internal controls       complete, and timely transaction-level financial\nfor financial reporting.                               information that management needed to make\n                                                       well-informed decisions, or to accumulate and\n      The GAO defines a material weakness as a         report reliable financial information without\nsignificant deficiency or combination of signifi-      extensive manual workarounds and compensat-\ncant deficiencies in internal control, such that       ing controls. The GAO further reported that\nthere is a reasonable possibility that a material      these deficiencies are likely to continue to exist\nmisstatement of the financial statements will be       until the SEC\xe2\x80\x99s general ledger system is either\nnot be prevented or detected. A significant de-        significantly enhanced or replaced, key account-\nficiency is a control deficiency, or combination       ing activity is fully integrated with the general\nof deficiencies, in internal control that is less      ledger at the transaction level, information se-\nsevere than a material weakness, yet important         curity controls are strengthened, and appropri-\nenough to merit attention by management.               ate resources are dedicated to maintaining effec-\nThe significant control deficiencies that cumula-      tive internal controls.\ntively resulted in the GAO\xe2\x80\x99s finding of a mate-\nrial weakness concerned the Commission\xe2\x80\x99s con-              The SEC stated that it is committed to mak-\ntrols over: (1) information security; (2) financial    ing resolution of the six significant deficiencies\nreporting process; (3) fund balance with the De-       identified by the GAO a high priority, and is\npartment of the Treasury; (4) registrant depos-        developing a plan to remediate the resulting ag-\nits; (5) budgetary resources; and (6) risk assess-     gregate material weakness to strengthen the\nment and monitoring process.                           SEC\xe2\x80\x99s financial reporting. The SEC Chairman\n                                                       indicated that remediating the material weak-\n     In addition, the GAO identified other defi-       ness in internal control over financial reporting\nciencies in internal controls that although not        was one of her top priorities and expressed her\nconsidered material weaknesses or significant          commitment to improving the integrity of the\ndeficiencies, could adversely affect the               SEC\xe2\x80\x99s reporting system. The OIG, as it has\nCommission\xe2\x80\x99s ability to meet financial reporting       done in the past, continues to plan to provide\nand other internal control objectives. These           assistance to the GAO in conducting the SEC\xe2\x80\x99s\ndeficiencies concerned the Commission\xe2\x80\x99s (1) se-        financial statement audit and monitoring pro-\ncurity over sensitive employee information; (2)        gress with respect to the indentified significant\npolicies and procedures related to or affecting        internal control deficiencies.\nfinancial reporting; (3) documentation of pay-\nroll controls; (4) prior period corrections; (5)\n\n\n\n                                                  16\n\x0cCHALLENGE:                                               The OIG has made several specific recom-\nREAL PROPERTY LEASING                                mendations designed to remedy the deficiencies\n                                                     identified in the SEC\xe2\x80\x99s real property leasing\n   The OIG has identified the SEC\xe2\x80\x99s real             function. We are pleased that management has\nproperty leasing procurement process as a            concurred with all of these recommendations.\nmanagement challenge.\n\n     The OIG recently completed an audit of          CHALLENGE:\nthe SEC\xe2\x80\x99s real property leasing process, Real        PERFORMANCE MANAGEMENT\nProperty Leasing Procurement Process, Report No.\n484, issued in September 2010. The audit de-             The OIG identified performance\ntermined that the Real Property and Leasing          management as a management challenge in\nBranch (Leasing Branch) within the SEC\xe2\x80\x99s OAS         both FY 2008 and 2009. In February 2007, the\ndoes not have adequate policies and procedures       OIG had issued an audit report, Enforcement\nin place and, until very recently, had no final      Performance Management, Report No. 423, which\npolicy for the SEC\xe2\x80\x99s real property leasing pro-      found that the Commission did not consistently\ngram, which includes leased properties in 13         perform all parts of the performance appraisal\ndifferent locations nationwide and an annual         process and did not have adequate policies and\nexpenditure of over $83 million in lease pay-        procedures for, among other things, managing\nments. The audit identified several specific de-     performance problems and implementing all\nficiencies in OAS\xe2\x80\x99s draft leasing policies and       the phases of the performance review cycle.\nprocedures, including (1) an incomplete listing      The OIG audit also found that the performance\nof the applicable legal requirements and guide-      cycle was not aligned with the fiscal year and\nlines; (2) an insufficient asset management plan;    did not timely reward employees for significant,\n(3) insufficient procedures for managing and         performance-based contributions.\ntracking leases; and (4) the absence of goals or\nperformance measures that specifically ad-               In FY 2009, the OIG reported that the SEC\ndressed real property leasing.                       had begun to undertake numerous steps to rem-\n                                                     edy this challenge, and that the agency had be-\n    The audit also determined that the absence       gun transitioning to a new five-level\nof adequate leasing policies and procedures led      performance rating system in FY 2008.\nto certain situations in which the SEC was re-\nquired to make payments that could have been             During FY 2010, the SEC continued its ef-\navoided if appropriate policies and procedures       fort to migrate employees to the new\nhad existed and been followed consistently.          performance-based management system in a\nThese situations included (1) the failure to         phased approach. Employees in the Division of\ntimely execute a new lease or obtain a lease ex-     Enforcement and the Office of Compliance In-\ntension at the time the existing lease for the San   spections and Examinations were scheduled to\nFrancisco Regional Office expired, resulting in      move new system on or about June 30, 2010.\nthe payment of higher holdover rent; (2) mak-        At the end of FY 2010, however, not all SEC\ning millions of dollars in simultaneous payments     employees had transitioned to the new system.\nfor two office buildings in New York that will       Management has indicated that the phased ap-\ncontinue for a total of seven years, even though     proach will continue during FY 2011 and that it\nthe SEC no longer occupied one of these build-       expects every employee to have a new\nings; and (3) paying an off duty police officer      performance work plan by the end of FY 2011.\n$200,000 per year to patrol a leased facility in a   Thereafter, according to management, the new\nhigh-crime area, even though the SEC only oc-        system will be used to re-link pay to\ncupies one of four floors of the facility.           performance.\n\n\n\n                                                17\n\x0c    Management has further indicated that it is    system. As the transition to the new system\nproviding web-based training to managers and       continues, the SEC needs to continue its efforts\nnon-managers as part of the implementation of      to ensure that agency has a fair, transparent and\nthe new performance management system and          credible method for measuring performance\nhas created a SharePoint site dedicated to         and awarding merit-pay increases.\nperformance management to apprise employees\nof important information regarding the new\n\n\n\n\n                                              18\n\x0cU.S. Securities and Exchange Commission\n                                                                     SEMIANNUAL\n                                                                     REPORT TO\n                                                Office of\n                                               Inspector\n                                                General\n                                                                     CONGRESS\n                                          ADVICE AND ASSISTANCE PROVIDED TO\n                                          THE AGENCY AND THE GOVERNMENT\n                                          ACCOUNTABILITY OFFICE\n                                              During this semiannual reporting period,          securities trading that was implemented in\n                                          the OIG provided advice and assistance to             response to an OIG investigation conducted\n                                          SEC management on various issues that were            during a previous reporting period. Subse-\n                                          brought to the OIG\xe2\x80\x99s attention during the             quently, the IG and OIG staff met with the\n                                          course of audits and investigations conducted         SEC\xe2\x80\x99s new Ethics Counsel to discuss issues of\n                                          by the Office and otherwise. This advice was          mutual interest and ways in which the OIG\n                                          conveyed through written communications, as           and the SEC Ethics Office can continue to\n                                          well as in meetings and conversations with            cooperate and work together to achieve their\n                                          agency officials. The advice provided in-             respective missions. The IG also met with the\n                                          cluded comments on draft policies and proce-          SEC\xe2\x80\x99s first-ever Chief Operating Officer\n                                          dures and suggestions for improvements in             (COO) for information technology, financial\n                                          existing policies and procedures. The OIG             reporting, and records management to discuss\n                                          also collaborated with and provided assistance        the challenges the IG believed the new COO\n                                          to the Government Accountability Office               would face.\n                                          (GAO) on matters of mutual interest to GAO\n                                          and the OIG.                                              In addition, the IG and OIG staff met\n                                                                                                with the Director of the SEC\xe2\x80\x99s Office of\n                                              Specifically, during the reporting period,        Equal Employment Opportunity (OEEO) and\n                                          the IG met with several officials who joined          OEEO staff to discuss protocols and proce-\n                                          the agency during the reporting period in an          dures to be followed when the OIG and the\n                                          effort to coordinate the OIG\xe2\x80\x99s activities with        OEEO are simultaneously conducting\n                                          those of these new offices. For example, the          investigations that have overlapping issues.\n                                          IG met with the SEC\xe2\x80\x99s Chief Compliance                Further, the OIG provided advice and\n                                          Officer, a new position at the agency, to dis-        assistance to the Office of Human Resources\n                                          cuss coordination between the OIG and the             (OHR) in connection with an investigation\n                                          compliance function, particularly with respect        completed during this reporting period into\n                                          to the SEC\xe2\x80\x99s system for monitoring employee           allegations that certain supervisors in the\n\n\n\n                                                                                           19\n\x0cOffice of Compliance Inspections and                      ment, OIT provided a revised draft that re-\nExaminations (OCIE) were working part-time                flected changes made in response to the\nschedules but regularly using leave without               comments submitted by the OIG, as well as\npay in order to receive full-time benefits. In            by other SEC divisions and offices. The OIG\nparticular, the OIG provided OHR officials                reviewed the revised draft and noted that all\nwith information concerning and citations to              of its comments had been incorporated into\nU.S. Office of Personnel Management guid-                 the revised draft. In addition, the OIG\nance on benefits affected by reducing a full-             provided two additional comments that sug-\ntime employee to part-time status and the                 gested clarification of provisions pertaining to\nproper use of leave without pay. The IG and               exceptions for disclosing Privacy Act records\nOIG staff also met with Enforcement officials             and the prohibition on intentionally viewing\nand the SEC Chairman\xe2\x80\x99s Office to discuss the              or modifying agency data without the explicit\nappropriate implementation of the SEC\xe2\x80\x99s new               authorization of the owner of the data or an\nTips, Complaints, and Referrals Intake Policy,            authorized exception. OIT incorporated the\nwhich was issued on March 10, 2010.                       OIG\xe2\x80\x99s comments into the final version of the\n                                                          Rules of the Road that was posted to the\n     Further, the OIG reviewed a draft of an              SEC\xe2\x80\x99s Intranet site.\nupdated version of the SEC OIT \xe2\x80\x9cRules of\nthe Road,\xe2\x80\x9d SECR 24-04.A01, which are in-                      Also during the reporting period, the OIG\ntended to ensure that agency computing and                coordinated with and provided assistance to\nnetwork resources are used responsibly, safely            GAO in connection with an engagement it\nand efficiently, thereby maximizing the avail-            commenced involving the \xe2\x80\x9crevolving door\xe2\x80\x9d at\nability of these resources. Based upon its re-            the SEC (i.e., SEC staff leaving the agency\nview of the draft document, the OIG                       and then working for or representing firms\nprovided written comments to OIT that made                regulated by the SEC). The IG and OIG staff\nsuggestions for improvements to and clarifica-            met with representatives of GAO to share in-\ntion of the draft. In its written comments, the           sight and knowledge acquired in this area as a\nOIG suggested (1) the addition of a reference             result of prior and ongoing OIG audit and\nto a recently-issued administrative regulation            investigative and work. In connection with\non the Management and Protection of Pri-                  that meeting, the IG reviewed and provided\nvacy Act Records and Other Personally Iden-               responses to various questions GAO had con-\ntifiable Information; (2) revision of the draft to        cerning, among other things, the nature of the\nreflect the Privacy Act exception for disclosure          revolving door issues the OIG has encoun-\nof information to officers and employees of               tered, and measures the SEC has taken or\nthe agency who have a need for the record in              could take to address problems presented by\nthe performance of their official duties; (3)             the revolving door and to minimize risk to the\nclarification of whether the term \xe2\x80\x9cpersonal               Commission in terms of influence by former\ninformation\xe2\x80\x9d referred to personally identifi-             staff members. The IG also provided GAO\nable information or something broader; (4)                with information regarding previous OIG\ninclusion of a reference to Executive Order               audit and investigative reports that made rec-\n13513, Federal Leadership on Reducing Text                ommendations designed to ensure that Com-\nMessaging While Driving, October 1, 2009;                 mission employees exercised impartiality in\nand (5) clarification that SEC policy prohibits           performing their official duties and were not\nusing a government-supplied electronic device             unduly influenced by the presence of former\nto send e-mails, as well as to text.                      employees in examinations or investigations,\n                                                          and the status of management\xe2\x80\x99s implementa-\n    After the OIG submitted its comments on               tion of these recommendations.\nthe draft updated Rules of the Road docu-\n\n\n\n                                                     20\n\x0cU.S. Securities and Exchange Commission\n                                                                      SEMIANNUAL\n                                                                      REPORT TO\n                                                Office of\n                                               Inspector\n                                                General\n                                                                      CONGRESS\n                                          COORDINATION WITH OTHER OFFICES\n                                          OF INSPECTOR GENERAL\n                                               During this reporting period, the SEC            the development of competent personnel.\n                                          OIG coordinated its activities in a variety of        The IG or a senior OIG staff member at-\n                                          ways with those of other OIGs, as is required         tended the Professional Development Com-\n                                          by Section 4(a)(4) of the Inspector General           mittee\xe2\x80\x99s monthly meetings.\n                                          Act of 1978, as amended. Specifically, the\n                                          SEC IG, or a senior OIG staff member, at-                 The Counsel to the SEC IG is currently\n                                          tended the monthly meetings of the Council            the Chair of the Council of Counsels to the\n                                          of the Inspectors General on Integrity and            Inspector General (CCIG), which is an infor-\n                                          Efficiency (CIGIE). During one of these               mal organization of IG attorneys throughout\n                                          monthly meetings, the SEC IG briefed the              the federal government who meet monthly\n                                          CIGIE members on challenges faced in                  and coordinate and share information. In the\n                                          conducting the SEC OIG\xe2\x80\x99s investigation into           reporting period, the Counsel to the SEC IG\n                                          the SEC\xe2\x80\x99s failure to uncover Bernard                  chaired the group\xe2\x80\x99s monthly meetings and\n                                          Madoff \xe2\x80\x99s Ponzi scheme, which was completed           otherwise provided leadership to the CCIG\n                                          on August 31, 2009. The SEC IG also met               members.\n                                          with outside consultants performing an organ-\n                                          izational assessment of another OIG to iden-              The SEC IG also participated in activities\n                                          tify areas of strength and opportunities for          designed to coordinate efforts among the fed-\n                                          improvement, and shared his experiences, as           eral financial regulatory IGs and strengthen\n                                          well processes and practices followed within          the oversight of the federal financial regula-\n                                          the SEC OIG.                                          tory structure as a whole. For example, the\n                                                                                                SEC IG met monthly with the IGs for the\n                                              The SEC IG is also a member of the                Department of Treasury, Federal Deposit In-\n                                          CIGIE\xe2\x80\x99s Professional Development Commit-              surance Corporation (FDIC), Federal Housing\n                                          tee, the purpose of which is to provide educa-        Finance Agency (FHFA), Commodity Futures\n                                          tional opportunities for members of the               Trading Corporation (CFTC), National\n                                          CIGIE community and to assist in ensuring             Credit Union Administration (NCUA), Pen-\n\n\n\n                                                                                           21\n\x0csion Benefit Guaranty Corporation (PBGC),           established a new Council of Inspectors Gen-\nBoard of Governors of the Federal Reserve           eral on Financial Oversight (CIGFO), chaired\nSystem Federal Reserve (Federal Reserve             by the IG of the Department of Treasury and\nBoard), Troubled Asset Relief Program               also composed of the IGs of the Federal Re-\n(TARP), Department of Housing and Urban             serve Board, CFTC, FDIC, FHFA, NCUA,\nDevelopment (HUD), U.S. Export-Import               SEC and TARP. Under the Dodd-Frank Act,\nBank and Farm Credit Administration to dis-         this Council is required to meet at least quar-\ncuss coordinated oversight efforts among the        terly to facilitate the sharing of information\nfinancial regulatory IGs. The SEC IG also           with a focus on the concerns that may apply\nserved on the TARP Inspector General                to the broader financial sector and ways to\nCouncil, along with the Special IG for the          improve financial oversight. The CIGFO is\nTARP, and IGs from the Department of                also required to submit an annual report to\nTreasury, Federal Reserve Board, FDIC,              the newly-established Financial Stability\nFHFA, HUD, Treasury Inspector General for           Oversight Council and the Congress, which\nTax Administration and the Small Business           must include a section that highlights the con-\nAdministration, and the U.S. Comptroller            cerns and recommendations of each IG who\nGeneral.                                            is a member of the CIGFO General and a\n                                                    summary of the general observations of the\n    In addition, Section 989E of the Dodd-          CIGFO. The SEC IG will actively participate\nFrank Wall Street Reform and Consumer Pro-          in the CIGFO\xe2\x80\x99s important activities and re-\ntection Act (Dodd-Frank Act), Public Law            sponsibilities.\n111-203, which was enacted on July 21, 2010,\n\n\n\n\n                                               22\n\x0cU.S. Securities and Exchange Commission\n\n                                                                      SEMIANNUAL\n                                                                      REPORT TO\n                                                                      CONGRESS\n                                                  Office of\n                                                 Inspector\n                                                  General\n\n\n\n\n                                          AUDITS AND EVALUATIONS\n                                          OVERVIEW                                              on risk and materiality, known or perceived\n                                                                                                vulnerabilities and inefficiencies, resource\n                                               The OIG is required by the Inspector             availability, and complaints that are received\n                                          General Act of 1978, as amended, to conduct           from Congress, internal SEC staff, the\n                                          audits and evaluations of agency programs,            Government Accountability Office, and the\n                                          operations and activities. The OIG\xe2\x80\x99s Office of        public.\n                                          Audits focuses its efforts on conducting and\n                                          supervising independent audits and evalua-            Audits\n                                          tions of the programs and operations of the\n                                          various SEC divisions and offices. The Office             Audits examine operations and financial\n                                          of Audits also hires independent contractors          transactions to ensure that proper\n                                          and subject matter experts to conduct work on         management practices are being followed and\n                                          its behalf. Specifically, the Office of Audits        resources are adequately protected in accor-\n                                          conducts audits and evaluations to determine          dance with governing laws and regulations.\n                                          whether:                                              Audits are systematic, independent, and\n                                                                                                documented processes for obtaining evidence.\n                                             \xe2\x80\xa2    There is compliance with governing            In general, audits are conducted when firm\n                                                  laws, regulations and policies;               criteria or data exist, sample data is measur-\n                                             \xe2\x80\xa2    Resources are safeguarded and appro-          able, and testing internal controls are a major\n                                                  priately managed;                             objective. Auditors collect and analyze data\n                                                                                                and verify agency records by obtaining sup-\n                                             \xe2\x80\xa2    Funds are expended properly;                  porting documentation, issuing questionnaires,\n                                             \xe2\x80\xa2    Desired program results are achieved;         and through physical inspection.\n                                                  and\n                                                                                                    The OIG\xe2\x80\x99s audit activities include\n                                             \xe2\x80\xa2    Information provided by the agency to         performance audits that are conducted of\n                                                  the public and others is reliable.            SEC programs and operations relating to ar-\n                                                                                                eas such as the oversight and examination of\n                                              Each year the Office of Audits prepares an        regulated entities, the protection of investor\n                                          annual audit plan. The plan includes work             interests, and the evaluation of administrative\n                                          that is selected for audit or evaluation based        activities. The Office of Audits conducts its\n\n                                                                                           23\n\x0caudits in accordance with the generally ac-            registering its securities for public sale to dis-\ncepted government auditing standards (Yellow           close a broad range of financial and non-\nBook) issued by the U.S. Comptroller General,          financial information in registration state-\nOIG policy, and guidance issued by the Coun-           ments, annual reports, and other filings made\ncil of the Inspectors General on Integrity and         with the SEC. Companies that are registered\nEfficiency (CIGIE).                                    with the SEC are required to comply with the\n                                                       reporting requirements of the Securities Act of\nEvaluations                                            1933 (Securities Act) and the Securities\n                                                       Exchange Act of 1934 (the Exchange Act).\n    The Office of Audits also conducts evalua-         Specific disclosure requirements for financial\ntions of the SEC\xe2\x80\x99s programs and activities.            and non-financial information are primarily\nEvaluations consist of reviews that often cover        found in Regulation S-K, 17 C.F.R. \xc2\xa7 229.10,\nbroad areas and are typically designed to pro-         and Regulation S-X, 17 C.F.R. \xc2\xa7 210.1-01 et.\nduce timely and useful information associated          seq., sets forth the financial statement disclo-\nwith current or anticipated problems. Evalua-          sure requirements.\ntions are generally conducted when a project\xe2\x80\x99s\nobjectives are based on specialty and highly               The SEC\xe2\x80\x99s Division of Corporation Fi-\ntechnical areas, criteria or data are not firm,        nance (CF) assists the Commission in execut-\nor needed information must be reported in a            ing its responsibility to oversee corporate dis-\nshort period of time. The Office of Audits\xe2\x80\x99            closure of important information to the invest-\nevaluations are conducted in accordance with           ing public, and manages the confidential\nOIG policy, Yellow Book non-audit service              treatment request process pursuant to dele-\nstandards and guidance issued by the CIGIE.            gated authority from the Commission. CF has\n                                                       a number of statutory requirements and re-\nAudit Follow-up and Resolution                         view priorities that it must meet to pursue its\n                                                       core investor protection responsibilities. In\n    During this semiannual reporting period,           addition to processing requests for confidential\nthe SEC offices and divisions made significant         treatment, CF reviews registrants\xe2\x80\x99 Exchange\nefforts to reduce the backlog of open recom-           Act reports and the financial statements of\nmendations, while ensuring that the most re-           every registrant at least once every three years,\ncent recommendations were fully imple-                 as mandated by the Sarbanes-Oxley Act of\nmented. Based on the appropriate evidence              2002.\nand documentation that management\nprovided to the OIG to support its intent to               Sometimes the public disclosure of\nimplement the OIG\xe2\x80\x99s recommendations, the               information required by the SEC\xe2\x80\x99s disclosure\nOIG closed 109 recommendations related to              rules (e.g., Regulation S-K) can adversely affect\n21 different Office of Audits reports.                 a company\xe2\x80\x99s business and financial condition\n                                                       because of the competitive harm that could\n                                                       result from the disclosure. This issue fre-\nAUDITS AND EVALUATIONS                                 quently arises in connection with the require-\nCONDUCTED                                              ment that a registrant file publicly all contracts\n                                                       material to its business other than those it en-\nAssessment of Corporation Finance\xe2\x80\x99s\nConfidential Treatment Processes and                   ters into in the ordinary course of business.\nProcedures (Report No. 479)                            Typical examples of the information that\n                                                       raises this concern include pricing terms,\n  Background                                           technical specifications and milestone pay-\n                                                       ments. To address the potential disclosure\n    The federal securities laws generally re-          hardship, the Commission has adopted a sys-\nquire any company that is publicly held or is          tem that allows companies to request confi-\n\n                                                  24\n\x0cdential treatment of information filed under                \xe2\x80\xa2   Test whether CF followed its internal\nthe Securities Act and the Exchange Act.                        policies and procedures for processing\n                                                                confidential treatment requests; and\n    Specifically, Commission Rules 406, 17                  \xe2\x80\xa2   Determine whether improvements and\nC.F.R. \xc2\xa7 230.406, and 24b-2, 17 C.F.R. \xc2\xa7\n                                                                best practices could be implemented\n240.24b-2, set forth the exclusive means for\n                                                                for the CF confidential treatment\nobtaining confidential treatment of\n                                                                process.\ninformation contained in documents filed un-\nder the Securities Act and the Exchange Act,\nrespectively, that would be exempt from dis-\nclosure under the FOIA. Rule 24b-2 requires               Results\nan applicant to include the following items,\namong other things, in an application to the                 The OIG found that CF is not performing\nCommission for confidential treatment:                  a robust review and examination of many\n                                                        confidential treatment requests. Specifically,\n   \xe2\x80\xa2   Identification of the confidential por-          out of 3,381 confidential treatment requests\n       tion of the filing;                              submitted to CF from January 2008 to March\n                                                        2010, 2,298, approximately 68 percent, were\n   \xe2\x80\xa2   A statement of the grounds of objec-             processed without review as a result of an ini-\n       tion to disclosure, including an analysis        tial screening process. A total of 789 out of\n       of how the confidential portion meets            3,381 requests, or approximately 23 percent,\n       an applicable FOIA exemption(s); and             were monitored for one or more particular\n   \xe2\x80\xa2   A justification of the time period for           matters (e.g., duration, materiality, etc.), while\n       which confidential treatment is re-              286 out of 3,381 requests, or approximately\n       quested.                                         8.5 percent, were selected for a full review of\n                                                        the confidential treatment application, which\n                                                        includes a review of the application itself and\n     Rule 406 requires that an applicant in-\n                                                        the initial screening form, and completion of\nclude similar information in its request for\n                                                        an examination report. As a result, over 90\nconfidential treatment. In their confidential\n                                                        percent of the confidential treatment requests\ntreatment applications, most applicants rely\n                                                        submitted to CF did not receive a thorough\non the exemption for \xe2\x80\x9ctrade secrets and\n                                                        review and examination for compliance with\ncommercial or financial information obtained\n                                                        all aspects of the applicable rules. Therefore,\nfrom a person [that is] privileged or confiden-\n                                                        the OIG believes there is an increased risk\ntial,\xe2\x80\x9d which is commonly referred to as \xe2\x80\x9cthe\n                                                        that information that is material to investors\n(b)(4) exemption.\xe2\x80\x9d\n                                                        may not be disclosed. Additionally, the OIG\n                                                        determined that the denial of a confidential\n   The objectives of the OIG\xe2\x80\x99s audit were to:\n                                                        treatment request is a rare occurrence, be-\n                                                        cause we only found one confidential treat-\n   \xe2\x80\xa2   Assess the adequacy of CF\xe2\x80\x99s internal\n                                                        ment request that CF did not grant during the\n       policies that governed the intake,\n                                                        scope of our review.\n       processing, and decision-making asso-\n       ciated with confidential treatment\n                                                             In addition, the OIG found the wide-\n       requests;\n                                                        spread use of conclusory statements in appli-\n   \xe2\x80\xa2   Assess if registrants that were provided         cants\xe2\x80\x99 analyses of the applicable FOIA ex-\n       confidential treatment by CF adhered             emptions, as well as in arguments regarding\n       to the SEC rules that govern confiden-           the potential competitive harm that could re-\n       tial treatment requests;                         sult if the subject matters for which confiden-\n                                                        tial treatment was requested were disclosed.\n\n                                                   25\n\x0cThe OIG also identified instances when the              termined that the reliability, accuracy, and\nscope of confidential treatment requests ap-            completeness of information contained in the\npeared to be overly broad. Further, we found            confidential treatment request tracking data-\nthat documentation explaining why the sub-              base is necessary to assist those charged with\nject matter of the confidential treatment re-           oversight of and decision-making for the con-\nquest was not necessary for the protection of           fidential treatment request process.\ninvestors did not always include a robust as-\nsessment of both qualitative and quantitative             Recommendations\nfactors that should be considered in assessing\nmateriality.                                                 On September 28, 2010, the OIG issued\n                                                        its final report on the results of the audit. The\n    During the audit, the OIG also identified           report included eight recommendations that\nnumerous instances when confidential treat-             were designed to improve CF\xe2\x80\x99s policies and\nment requests were assigned for review to CF            procedures for processing, screening, and ex-\nstaff in Assistant Director Offices that do not         amining confidential treatment requests. Spe-\nnormally review the SEC filings of the confi-           cifically, the OIG recommended that CF:\ndential treatment applicants or companies in\nthe confidential treatment applicants\xe2\x80\x99 industry            (1)   Recommend to the Commission that\ngroups. For example, only 27 percent (247                        the substantive requirements for\nout of 924) of the confidential treatment                        confidential treatment requests that\nrequests received from companies in the                          are currently described in Staff Le-\nhealthcare and insurance industries from                         gal Bulletin No. 1, as well as any ad-\nJanuary 2008 to December 2009 were as-                           ditional substantive requirements\nsigned to the Assistant Director Office that                     deemed appropriate, be codified as\nprocesses confidential treatment requests                        formal guidance for confidential\nsubmitted by companies in the healthcare and                     treatment applicants;\ninsurance industries. Staff members who are\nnot assigned to a confidential treatment re-               (2)   Revise its internal procedures for\nquest applicant\xe2\x80\x99s industry group may not be as                   processing confidential treatment\nknowledgeable of the subject matter of cer-                      requests to require additional docu-\ntain confidential treatment requests, thus in-                   mentation of the substantive review\ncreasing the risk that confidential treatment                    of the materiality and competitive\nmay be improperly granted for information                        harm application-specific require-\nthat would be material to investors.                             ments, including a description of the\n                                                                 specific qualitative and/or quantita-\n     Lastly, the OIG determined that CF needs                    tive factors considered in assessing\nto implement additional controls in its confi-                   the materiality and competitive\ndential treatment request tracking database to                   harm pertinent to the subject matter\nensure data is captured correctly. The OIG                       of the confidential treatment re-\nidentified some data discrepancies in the CF                     quest;\nconfidential treatment request database, and\nfound that the confidential treatment request              (3)   Revise its internal procedures to re-\ntracking database lacks certain functionality,                   quire additional documentation of\nsuch as the ability to track confidential treat-                 the Assistant Director Offices\xe2\x80\x99 review\nment requests that are modified after the ini-                   of the Office of Disclosure Support\xe2\x80\x99s\ntial submission. The CF confidential treat-                      recommendations of \xe2\x80\x9cNo Review\xe2\x80\x9d\nment request tracking database is used by                        to document factors considered in\nmanagement as a medium to generate                               making the determination that no\nperformance reports. As such, the OIG de-                        review is required;\n\n                                                   26\n\x0c(4)   Perform periodic internal audits of               (8)   Add functionality to the confidential\n      the confidential treatment process to                   treatment request tracking database\n      provide for continuous monitoring of                    to identify confidential treatment\n      the confidential treatment program                      requests that were modified from\n      and, as part of these periodic inter-                   their initial state.\n      nal audits, verify on a periodic basis\n      that the information for which con-               Management fully concurred with four\n      fidential treatment was granted has           recommendations, partially concurred with\n      not been publicly disclosed and, if           three recommendations, and did not concur\n      such information has been publicly            with one recommendation. We expressed\n      disclosed, take steps, as appropriate,        concern that CF did not concur with our rec-\n      to revoke the grant of confidential           ommendation to codify the substantive re-\n      treatment;                                    quirements listed in Staff Legal Bulletin No. 1\n                                                    as formal guidance for confidential treatment\n(5)   Revise its internal procedures for            requests, because we believe that codification\n      handling the initial screening of             of these requirements would be beneficial to\n      confidential treatment requests to            both companies and CF.\n      ensure that the materiality and com-\n      petitive harm criteria are not met by             Additionally, we expressed concern that\n      simply making conclusory state-               CF partially concurred with our recommen-\n      ments or including boilerplate lan-           dations that CF enhance its documentation\n      guage in the applications by requir-          reflecting its assessment of the materiality and\n      ing additional documentation of               competitive harm arguments presented in\n      how the screening and review proc-            confidential treatment requests to detail the\n      ess identified specific and concrete          specific qualitative and/or quantitative factors\n      representations to support each cri-          considered in making these assessments; that\n      teria;                                        CF verify on a periodic basis that information\n                                                    that has been granted confidential treatment\n(6)   Ensure that the Assistant Director            has not been publicly disclosed; and that CF\n      Offices with the highest percentage           document how the screening and review\n      of confidential treatment requests            process identified specific, concrete represen-\n      provide training to staff in the other        tations to support each criteria needed for\n      Assistant Director offices in order to        confidential treatment to be granted. We re-\n      share knowledge about specific in-            main convinced that CF should fully imple-\n      dustry matters with staff who will be         ment all of the OIG\xe2\x80\x99s recommendations in\n      performing reviews of confidential            order to improve CF\xe2\x80\x99s internal policies and\n      treatment requests for companies in           procedures for processing confidential treat-\n      industries outside of their assigned          ment requests and enhance CF\xe2\x80\x99s review of\n      industry group;                               such requests.\n\n(7)   Implement controls in the confiden-               The OIG\xe2\x80\x99s report, Assessment of Corporation\n      tial treatment request database to            Finance\xe2\x80\x99s Confidential Treatment Processes and Proce-\n      perform validity checks for fields and        dures, is available on our website at\n      to ensure that all information for            http://www.sec-oig.gov/Reports/AuditsInspe\n      each record has been completely               ctions/2010/479.pdf.\n      populated; and\n\n\n\n\n                                               27\n\x0cReview of the SEC\xe2\x80\x99s Section 13(f)                        equity securities that are traded on an\nReporting Requirements                                   exchange or quoted on National Association\n(Report No. 480)                                         of Securities Dealers Automated Quotations\n                                                         (NASDAQ), equity options and warrants,\n  Background                                             shares of closed-end investment companies,\n     In 1975, Congress enacted Section 13(f) of          and some convertible debt securities. Under\nthe Securities Exchange Act of 1934                      Section 13 (f)(3), the Commission is responsi-\n(Exchange Act), 15 U.S.C. \xc2\xa7 78m(f), to in-               ble for publishing an official list of the\ncrease the public availability of information            securities that must be reported pursuant to\nregarding the securities holdings of institu-            Section 13(f)(1). Form 13F requires disclosure\ntional investors. According to the legislative           of the name and address of the institutional\nhistory for Section 13(f), Congress intended to          investment manager filing the report and, for\ncreate in the SEC a centralized repository of            each security being reported, specific\nhistorical and current data regarding the ac-            information, including the name of the issuer,\ntivities of institutional investment managers in         the class, the Committee on Uniform\norder to improve the body of publicly avail-             Securities Identification Procedures (CUSIP)\nable factual data and thereby increase investor          number, the number of shares or principal\nconfidence in the integrity of the U.S.                  amount, and the aggregate fair market value.\nsecurities markets. This legislative history also\nreflects that Congress anticipated that                      Pursuant to Commission Rule 24b-2, 17\ngovernment agencies, including the SEC,                  C.F.R. \xc2\xa7 240.24b-2, an institutional invest-\nwould be expected to make extensive use of               ment manager may request confidential\nthe institutional disclosure data in fulfilling          treatment of information required to be re-\ntheir responsibilities to protect the public in-         ported on Form 13F. Section 13(f)(3) provides\nterest within a consistent and coordinated               that the Commission may prevent or delay the\nregulatory framework.                                    public disclosure of the information reported\n                                                         under Section 13(f)(1) in accordance with the\n    Section 13(f) and the Commission\xe2\x80\x99s im-               FOIA. Section 13(f)(3) further provides that\nplementing regulation requires that institu-             information identifying securities held by the\ntional investment managers that exercise in-             account of a natural person or an estate or\nvestment discretion with respect to accounts             trust (other than a business trust or investment\nholding certain equity securities having an              company) shall not be publicly disclosed. The\naggregate fair market value of $100 million or           Commission has delegated authority to the\nmore on the last trading day in a calendar               SEC\xe2\x80\x99s Division of Investment Management\nyear to file quarterly reports of their holdings         (IM) to grant or deny applications for confi-\nwith the SEC on Form 13F electronically                  dential treatment pursuant to Section 13(f),\nthrough the Commission\xe2\x80\x99s Electronic Data-                and to revoke any grants of confidential\nbase Gathering and Retrieval (EDGAR) sys-                treatment for such applications.\ntem. Section 13(f)(3) mandates that the                        The overall objectives of the review were\nCommission tabulate the information con-                 to:\ntained in the Form 13F reports and dissemi-                    \xe2\x80\xa2   Examine whether the Commission\xe2\x80\x99s\nnate that information to the public.                               implementation of and current prac-\n                                                                   tices under Section 13(f) meet Con-\n    The institutional investment managers                          gress\xe2\x80\x99s intent in establishing Section\nthat are required to file Form 13F typically                       13(f);\ninclude investment advisers, banks, insurance\ncompanies, broker-dealers, pension funds and                   \xe2\x80\xa2   Examine the sufficiency of the\ncorporations. The securities that must be re-                      Commission\xe2\x80\x99s existing policies and\nported under Section 13(f) generally include\n\n                                                    28\n\x0c        procedures that implement Section                 quence, errors or problems with the Form 13F\n        13(f);                                            filings are typically detected only in connec-\n    \xe2\x80\xa2   Determine whether the reporting of                tion with IM\xe2\x80\x99s processing of Section 13(f) con-\n        entities covered under Section 13(f) is           fidential treatment requests, or when a mem-\n        appropriately designed to comply with             ber of the public notifies IM of an error or\n        the statutory requirements;                       problem with a Form 13F. Additionally, we\n                                                          found that there are no checks built into the\n    \xe2\x80\xa2   Examine whether the Commission\xe2\x80\x99s                  EDGAR system (through which Forms 13F\n        policies and procedures for reviewing             are filed) to scan for obvious errors in the\n        and processing requests for the confi-            forms, and that the current text file format of\n        dential treatment of information re-              Form 13F limits the facility to extract, organ-\n        quired to be reported under Section               ize and analyze the data being reported.\n        13(f) are adequate and appropriate;\n        and                                                    Further, the OIG\xe2\x80\x99s review revealed that a\n    \xe2\x80\xa2   Determine whether the oversight over              third party prepares the official list of Section\n        the Section 13(f) process is sufficient.          13(f) securities that the Commission is re-\n                                                          quired to provide to the public, and has been\n                                                          doing so since 1981, based upon specifications\n  Results                                                 received from the SEC in 1979. The official\n                                                          list prepared by the third party is posted to the\n     Overall, our review found that significant\n                                                          Commission\xe2\x80\x99s website each quarter; however,\nimprovements can be made with respect to the\n                                                          no SEC division or office conducts any review\nSEC\xe2\x80\x99s review and monitoring of information\n                                                          of the list for accuracy and completeness be-\nreported under Section 13(f). Significantly,\n                                                          fore it is posted. We believe that such a review\nour review found that despite Congress\xe2\x80\x99 intent\n                                                          is important, given that institutional invest-\nthat the SEC would be expected to make ex-\n                                                          ment managers rely on the official list in pre-\ntensive use of the Section 13(f) information for\n                                                          paring their Form 13F reports in accordance\nregulatory and oversight purposes, no SEC\n                                                          with Commission Rule 13f-1, 17 C.F.R. \xc2\xa7\ndivision or office conducts any regular or sys-\n                                                          240.13f-1. We also found that the SEC has no\ntematic review of the data that is filed on\n                                                          contract or agreement with the third party\nForm 13F. Specifically, the OIG found that\n                                                          with respect to the preparation of the official\nwhile IM has been delegated authority to\n                                                          list of Section 13(f) securities. This lack of a\ngrant or deny confidential treatment pursuant\n                                                          formal contract or agreement poses a risk to\nto Section 13(f), no division or office has been\n                                                          the SEC that the third party could stop pre-\ndelegated the authority to review and analyze\n                                                          paring the list at any time, and this informal\nthe Form 13F reports, and no division or\n                                                          arrangement appears to violate the voluntary\noffice considers this task as part of its official\n                                                          services prohibition of the Antideficiency Act,\nresponsibility. Further, the OIG found that\n                                                          31 U.S.C. \xc2\xa7 1342.\nthe information filed on Form 13F can be use-\nful and should be reviewed in a routine and\n                                                              The OIG\xe2\x80\x99s testing of a sample selection of\nsystematic manner.\n                                                          25 confidential treatment requests that were\n                                                          processed by IM revealed that files and sup-\n     The OIG\xe2\x80\x99s review also disclosed that no\n                                                          porting documentation could not be located\nSEC division or office monitors the Form 13F\n                                                          for approximately one-half of the items se-\nfilings for accuracy and completeness. As a\n                                                          lected in our initial sample. When we selected\nresult, many Forms 13F are filed containing\n                                                          an additional 12 CTRs to review, files for two-\nerrors or problems, which may not be detected\n                                                          thirds of these additional items also could not\nor corrected in a timely manner because no\n                                                          be located. These missing files raised con-\nroutine monitoring is conducted. As a conse-\n                                                          cerns that confidential information reported\n\n                                                     29\n\x0con Form 13F could inadvertently be disclosed.                    to detect and/or correct obvious er-\nOur testing also revealed that the SEC is not                    rors in Forms 13F;\ncomplying with its records retention schedule\nfor CTRs. In addition, our review found that               (4)   IM, in consultation with the Chair-\nwith respect to several CTRs, IM has not ren-                    man\xe2\x80\x99s Office, should work with OIT\ndered a final decision on a timely basis, thus                   to pursue updating Form 13F to a\naffording certain filers de facto confidential                   more structured format that will\ntreatment of their 13F reports.                                  make the data easier to extract and\n                                                                 analyze;\n     Finally, our review disclosed that the cur-\nrent Section 13(f) reporting requirements are              (5)   The Chairman\xe2\x80\x99s Office should assign\noutdated and do not currently require disclo-                    to an appropriate division and/or\nsure of all significant activities of institutional              office responsibility for reviewing the\ninvestment managers, thus rendering the data                     official list of Section 13(f) securities\nless useful than it could be to investors and                    that is prepared quarterly by a third\nregulators.                                                      party and test it on a sample basis;\n\n  Recommendations                                          (6)   IM, in consultation with OAS and\n                                                                 the Chairman\xe2\x80\x99s Office, should ensure\n    The OIG issued a final report containing                     that the SEC enters into a formal\nthe results of our review on September 27,                       contract or agreement with the third\n2010. The report included 12 recommenda-                         party that prepares the official list of\ntions that were designed to improve the Sec-                     Section 13(f) securities;\ntion 13(f) reporting process to ensure that use-\nful and reliable data is provided to the public            (7)   IM and the SEC\xe2\x80\x99s Records\nand government regulators, consistent with                       Management Branch should modify\nCongress\xe2\x80\x99 intent in enacting Section 13(f).                      their respective policies and proce-\nThe recommendations made in the report                           dures to ensure that files for process-\nwere as follows:                                                 ing CTRs are properly maintained\n                                                                 and retained in accordance with the\n    (1)   The Chairman\xe2\x80\x99s Office should dele-                     SEC\xe2\x80\x99s record retention schedule;\n          gate primary responsibility for re-\n          viewing and analyzing Form 13F                   (8)   IM, in consultation with the Chair-\n          information to the appropriate divi-                   man\xe2\x80\x99s Office, should take appropri-\n          sion or office;                                        ate steps to improve its policies and\n                                                                 procedures to ensure that written\n    (2)   The Chairman\xe2\x80\x99s Office should assign                    requests for confidential treatment\n          to the appropriate divisions or offices                (particularly certain novel requests)\n          responsibility for monitoring Section                  under Section 13(f) are granted or\n          13(f) filings for accuracy and com-                    denied within an appropriate time\n          pleteness in order to limit the errors                 frame so that filers are not afforded\n          in or problems with the filings,                       de facto confidential treatment as a\n          thereby enhancing the usefulness                       result of IM not issuing a written\n          and reliability of the                                 response;\n          data;\n                                                           (9)   IM, in consultation with the Office\n    (3)   IM and OIT should renew efforts                        of the General Counsel (OGC), the\n          that were begun in 2005 and imple-                     Office of International Affairs and\n          ment checks in the EDGAR system                        the Chairman\xe2\x80\x99s Office, should take\n                                                                 appropriate steps to improve its poli-\n                                                      30\n\x0c         cies and procedures to ensure that             vigorously in order to achieve cost savings and\n         requests for relief under Section 13(f)        increase the SEC\xe2\x80\x99s productivity and efficiency.\n         made by certain large foreign institu-         Pursuant to its independent leasing authority,\n         tional investment managers are ad-             the SEC enters into commercial leases for all\n         dressed in a timely and appropriate            of the agency\xe2\x80\x99s office space.\n         manner;\n                                                            The SEC\xe2\x80\x99s real estate leasing function is\n   (10) IM, in consultation with the Division           managed primarily by OAS\xe2\x80\x99s Real Property\n        of Risk, Strategy, and Financial In-            and Leasing Branch (Leasing Branch), which\n        novation (Risk Fin), OGC and the                was established in April 2009. Other OAS\n        Chairman\xe2\x80\x99s Office, should determine             components that have responsibilities that im-\n        whether legislative changes to Sec-             pact the SEC\xe2\x80\x99s real estate leasing program in-\n        tion 13(f) should be pursued;                   clude OAS\xe2\x80\x99 Security and Construction\n                                                        Branches, as well as the Office of Acquisitions.\n   (11) IM, in consultation with the Chair-             Other SEC offices, such as the Office of Fi-\n        man\xe2\x80\x99s Office, should request that               nancial Management (OFM) and OIT, have\n        Risk Fin update its previous analysis           significant interaction with the leasing pro-\n        of the impact of increasing the Sec-            gram.\n        tion 13(f) reporting threshold of\n        $100 million; and                                    At the time of the OIG\xe2\x80\x99s audit, SEC\n                                                        maintained 2,482,576 square feet of leasehold\n   (12) IM, in consultation with Risk Fin               interests. These include leases for SEC head-\n        and the Chairman\xe2\x80\x99s Office, should               quarters facilities located in Washington, D.C.,\n        determine whether to recommend                  as well as leases for all of the SEC\xe2\x80\x99s regional\n        that the Commission adopt a rule                offices located throughout the country. The\n        requiring institutional investment              SEC made total lease payments of approxi-\n        managers to report aggregate pur-               mately $83.8 million in both FYs 2008 and\n        chases and aggregate sales of                   2009, representing approximately nine per-\n        securities under Section 13(f).                 cent of the SEC\xe2\x80\x99s total budget authority for\n                                                        these years. It is anticipated that the SEC\xe2\x80\x99s\nManagement fully concurred with all of the              leasing program and leasing costs will increase\nOIG\xe2\x80\x99s recommendations. The OIG\xe2\x80\x99s report,                over the next few years as the agency expands\nReview of the SEC\xe2\x80\x99s Section 13(f) Reporting Re-         to meet new responsibilities.\nquirements, is available on our website at\nhttp://www.sec-oig.gov/Reports/AuditsInspe                   The objectives of the OIG\xe2\x80\x99s audit were to\nctions/2010/480.pdf.                                    determine whether OAS had established real\n                                                        property leasing policies and procedures and\n                                                        to examine whether these policies and proce-\nReal Property Leasing Procurement                       dures were consistently followed and in\nProcess (Report No. 484)                                compliance with applicable federal laws, rules,\n                                                        and regulations. The audit was also per-\n  Background                                            formed to ascertain how the Leasing Branch\n                                                        maintains and tracks the SEC\xe2\x80\x99s real property\n    In 1990, Congress provided the SEC with\n                                                        leases. Lastly, the audit sought to identify the\nindependent leasing authority and, at the\n                                                        SEC\xe2\x80\x99s current leases and assess whether the\nsame time, exempted the SEC from General\n                                                        lease requirements were appropriate and\nServices Administration (GSA) space man-\n                                                        whether the SEC received the best value for\nagement\xe2\x80\x99s regulations or directives. In doing\n                                                        its leasing investments.\nso, Congress intended that the SEC would\nexercise this independent leasing authority\n\n                                                   31\n\x0c  Results                                                are set forth in guidance issued by the Federal\n                                                         Real Property Council (FRPC).\n    Overall, the audit found that the SEC\xe2\x80\x99s\nLeasing Branch does not have adequate poli-                   Third, the audit found that OAS did not\ncies in place and, until very recently, had no           have sufficient procedures for how leases\nfinal leasing policies and procedures. The               should be management and tracked. Al-\naudit also determined that the absence of                though the Leasing Branch had a document\nadequate leasing policies and procedures led             that described the rent payment process and\nto certain situations in which the SEC was re-           staff manually tracked monthly lease pay-\nquired to make lease payments that could have            ments on a spreadsheet, the Leasing Branch\nbeen avoided if appropriate policies and pro-            did not separately track amounts paid for op-\ncedures had existed and been followed consis-            erating expenses, property taxes or repairs.\ntently.                                                  The audit concluded that the lack of such de-\n                                                         tailed payment data hinders the SEC\xe2\x80\x99s ability\n     Significantly, the audit determined that the        to monitor expenses incurred during the op-\nprimary leasing policy document, SECR 11-                erational phase of a lease, and that such\n03, \xe2\x80\x9cSEC Leasing Program,\xe2\x80\x9d which was final-              information would be useful in making future\nized after our audit fieldwork was completed,            leasing decisions and formulating the annual\nis incomplete and inadequate. Further, the               budget for leased properties.\nSEC\xe2\x80\x99s Leasing Program Operating Procedures\n(OP 11-03), which supplement SECR 11-03,                     Fourth, the audit determined that although\nare also inadequate and remain in draft form.            the SEC\xe2\x80\x99s five-year draft strategic plan in-\n                                                         cluded a strategic goal that encompassed en-\n     The audit noted several specific deficien-          hancement of the Commission\xe2\x80\x99s performance\ncies in the SEC\xe2\x80\x99s leasing policies and proce-            through the effective alignment and\ndures. First, we found that SECR 11-03 is in-            management of financial capital, the SEC had\ncomplete, as it does not list or describe all of         no specific goals or performance measures for\nthe legal requirements and guidelines relevant           real property leasing, even though the SEC\nto real property leasing, fails to enumerate the         expends approximately $83.8 million per year\nspecific objections of the SEC\xe2\x80\x99s leasing pro-            on real property leases. The audit noted that\ngram and provides no instructions or guidance            without such goals and performance measures,\nto facilitate compliance with relevant authori-          OAS is unable to employ a continuous moni-\nties. While the SEC is exempted from strict              toring and feedback mechanism, which is a\nadherence to GSA space management regula-                required component of a sufficient asset\ntions or directives, the OIG found that the              management plan.\nSEC could benefit significantly by looking to\nGSA regulations on leasing and management                    The audit revealed certain specific in-\nof real property as a guide, and evaluating,             stances in which the failure to have adequate\nassessing and implementing these regulations,            leasing policies and procedures resulted in ad-\nas deemed appropriate.                                   ditional costs to the agency. In the case of the\n                                                         San Francisco Regional Office lease that was\n    Second, while OGC has indentified SECR               expiring at the end of October 2009, we\n11-03 as the SEC\xe2\x80\x99s asset management plan                 found that OAS changed its initial plan to ne-\nrequired by Executive Order 13327, \xe2\x80\x9cFederal              gotiate a lease with the current landlord due to\nReal Property Asset Management,\xe2\x80\x9d the OIG\xe2\x80\x99s               market information showing a dramatic drop\nreview of that document revealed that it falls           in rental rates in the San Francisco office mar-\nwell short of being an adequate asset                    ket. As a consequence, OAS decided to con-\nmanagement plan. The audit noted that                    duct a full and open competition and prepared\nSECR 11-03 does not include the required                 a sole source justification to extend the existing\ncomponents of an asset management plan that              lease for one year, at an expected rate of\n\n                                                    32\n\x0c$42.24 per rentable square foot, to allow suffi-         compelling urgency, which was conditioned on\ncient time to negotiate a long-term solution.            the provision that the successor landlord as-\nHowever, the one-year extension was never                sume the SEC\xe2\x80\x99s remaining obligations at the\nexecuted, and the SEC paid higher \xe2\x80\x9choldover\xe2\x80\x9d             existing lease site.\nrent of over $60 per rentable square foot until\nit executed a new lease with the existing build-              While the SEC entered into a lease for a\ning landlord in April 2010. At that time, the            new NYRO location in March 2005, it re-\nSEC was able to obtain a credit for the differ-          mained responsible for payments under the\nence between the higher \xe2\x80\x9choldover\xe2\x80\x9d rent rate             initial lease. The new landlord did not assume\nand the rent rate in effect as of October 31,            any of the SEC\xe2\x80\x99s remaining obligation at the\n2009, of $53.34 per rentable square foot.                previous site (although the landlord did agree\n                                                         that the SEC would be responsible only for\n     Notwithstanding the credit obtained, the            operating expenses during the first year of the\nOIG found that the failure to extend the pre-            lease). The SEC contacted GSA, which found\nvious lease prior to its expiration or to enter          a tenant for the SEC\xe2\x80\x99s former office location.\ninto a new one on a timely basis resulted in the         The SEC, also in March 2005, entered into a\nSEC, during a time of declining market rental            wrap around lease and surrender agreement\nrates, paying rent at rates substantially higher         (similar to a sublease), which terminated the\nthan the rate it would have paid had it exe-             SEC\xe2\x80\x99s previous lease provided that the SEC\ncuted the one-year lease extension. Specifi-             made certain payments to the landlord, and\ncally, the OIG calculated that even with the             the landlord and GSA executed a lease for the\ncredit obtained after the new lease was signed,          premises (which they did).\nthe SEC paid excess rent totaling $203,000\nbetween November 2009 and March 2010.                         The OIG found that, as a consequence of\nWhile OAS indicated that it performed acqui-             the circumstances described above, the SEC\nsition planning, the OIG audit found that the            has made since May 2005, and continues to\nSEC\xe2\x80\x99s written leasing policies and procedures            make, simultaneous payments for office space\ndid not adequately address timely acquisition            at two locations in New York City. The OIG\nplanning and did not require the preparation             calculated that the SEC paid over $15 million\nof adequate project plans.                               between May 31, 2005 and March 31, 2010\n                                                         for property that no SEC employees have oc-\n     In another situation involving the lease of         cupied since June 2005. During this same pe-\noffice space in New York City, the OIG found             riod, the SEC made payments of over $35 mil-\nthat the SEC, for several past years and con-            lion to lease its current NYRO facility. Under\ntinuing into the future, was obligated to make           the terms of the wrap around lease and sur-\nsimultaneous payments for two office proper-             render agreement, the SEC will continue to\nties, one of which it no longer occupied. Spe-           make simultaneous payments until March\ncifically, the OIG found that after asbestos was         2012. The OIG audit determined that the\ndiscovered in the office location it had leased          lack of SEC guidance for evaluating options\nsince late September 2001, the SEC had a dis-            prior to vacating leased space, or for including\npute with the landlord and decided to relocate           a termination for convenience clause or a\nits New York Regional Office (NYRO) and en-              broader, more inclusive default clause in a\nter into a lease at another site. However, the           lease, or using flexible lease terms, contributed\nSEC was still responsible for payments under             to the SEC paying millions of dollars for space\nthe initial lease, as it did not believe it could        it did not occupy.\ndemonstrate that the landlord had breached\nthe lease terms. In April 2004, SEC officials                A final situation where insufficient policies\nexecuted and approved a justification for other          and procedures contributed to increased costs\nthan full and open competition to obtain a               pertained to the evaluation of security re-\nnew NYRO lease on the basis of unusual and               quirements at a site in Alexandria, Virginia,\n                                                    33\n\x0cwhere the SEC entered into a short-term lease             achieves cost savings and increased productiv-\nfor temporary office space, occupying a single            ity and efficiency, as Congress intended. Spe-\nfloor of a four-floor building. While the audit           cifically, we recommended that OAS:\nfound that the Leasing and Security Branches\nhave been working to coordinate their efforts                (1)   Revise SECR 11-03 and draft OP\nsince the chiefs of those branches arrived at                      11-03 to ensure that they are\nthe SEC in 2008, improved coordination be-                         adequate and complete and include\ntween these branches is needed. Further, al-                       the information identified in the re-\nthough the Security Branch has developed two                       port, finalize OP 11-03, and ensure\ndocuments to be used in connection with pro-                       that the revised documents are\nposed SEC office locations \xe2\x80\x93 a Building Secu-                      posted to the Commission\xe2\x80\x99s Intranet\nrity Survey and a Security and Safety Assess-                      site and circulated to staff with leas-\nment, the OIG identified additional important                      ing responsibilities;\ninformation that should have been included in\nthe Security and Safety Assessment.                          (2)   Amend SECR 11-03 to include a\n                                                                   complete list of relevant authorities\n     In addition, the OIG audit found that nei-                    that apply to real property leasing\nther the Building Security Survey nor the Se-                      and finalize detailed guidance for\ncurity and Safety Assessment were used in                          ensuring compliance with those\nconnection with the Alexandria, Virginia                           authorities;\nshort-term lease. Based on the SEC\xe2\x80\x99s analysis\nof the area crime rate, it explored options for              (3)   Measure the SEC\xe2\x80\x99s real property\nappropriately securing the facility. As a result,                  leasing policies and procedures\nOAS determined that the cost of developing                         against pertinent provisions of GSA\ncomputerized access for the building was too                       regulations, as appropriate;\nhigh. OAS decided that the most cost-\neffective option was to place unarmed guards                 (4)   Ensure that the Leasing Branch\xe2\x80\x99s\non the floor occupied by the Commission, at                        policies and procedures, including\nthe SEC\xe2\x80\x99s expense, and for the SEC to pay the                      OP 11-03 and the attached check-\nlandlord, pursuant to a lease amendment, to                        lists, provide comprehensive guid-\nhire an off-duty police officer to patrol the                      ance for SEC leasing officials regard-\narea at a cost of $200,000 per year. Thus, the                     ing the leasing process;\nSEC is paying for an armed, off-duty police\nofficer to be stationed at a facility where it oc-           (5)   Utilize the \xe2\x80\x9cRequired Components\xe2\x80\x9d\ncupies only one of four floors. Our audit                          Section of the FRPC\xe2\x80\x99s Guidance for\nfound that if the appropriate security docu-                       Improved Asset Management to de-\nments had been used in connection with this                        velop and finalize the SEC\xe2\x80\x99s real\nlease, the Leasing Branch would have been                          property leasing asset management\nbetter equipped to negotiate for adequate se-                      plan, as appropriate;\ncurity of the facility to be provided as part of\nthe initial lease document.                                  (6)   Amend its leasing policies and pro-\n                                                                   cedures to require the tracking and\n  Recommendations                                                  monitoring or all leasing expenses\n                                                                   (i.e., rent, operating costs and taxes)\n    The OIG issued a final report reflecting                       for informational and budget formu-\nthe results its audit on September 30, 2010.                       lation purposes;\nThe audit determined that several improve-\nments in the real property leasing process are               (7)   Develop performance goals for the\nneeded to ensure that the SEC exercises its                        SEC\xe2\x80\x99s real property leasing activities,\nindependent leasing authority vigorously and                       including both lease acquisition and\n\n                                                     34\n\x0c      the monitoring and administration of                     consistently includes the Building\n      existing leases, identify key external                   Security Survey document in all so-\n      factors that could significantly affect                  licitations for leased space; and\n      the achievement of these goals, and\n      periodically evaluate whether these                (14) Implement policies and procedures\n      goals are met;                                          to ensure the Security Branch per-\n                                                              forms a physical review of prospec-\n(8)   Develop performance measures to                         tive building locations and deter-\n      assist in evaluating the effectiveness                  mines the threat within the immedi-\n      of the major functions of real prop-                    ate area prior to entering into a lease\n      erty acquisitions and operations and                    for any facility.\n      periodically evaluate performance\n      based on these measures;                       Management fully concurred with all of the\n                                                     OIG\xe2\x80\x99s recommendations. The OIG\xe2\x80\x99s report,\n(9)   Revise SECR 11-03 and draft OP                 Real Property Leasing Procurement Process, is avail-\n      11-03 to include complete written              able on our website at\n      policies for timely acquisition plan-          http://www.sec-oig.gov/Reports/AuditsInspe\n      ning pertinent to real property leases,        ctions/2010/484.pdf.\n      including the preparation of project\n      plans and schedules with projected\n      dates for achieving milestones well in         Assessment of the SEC\xe2\x80\x99s Privacy\n      advance of the scheduled com-                  Program (Report No. 485)\n      mencement of a lease;\n                                                       Background\n(10) Adopt evaluation procedures that\n                                                         The OIG contracted the services of C5i\n     involve scoring and ranking various\n                                                     Federal, Inc. (C5i) to perform an assessment of\n     options prior to deciding to vacate\n                                                     the SEC\xe2\x80\x99s privacy policies and procedures and\n     leased premises or to terminate a\n                                                     the proper handling of personally identifiable\n     lease, and develop a transparent\n                                                     information (PII) in its Headquarters (Station\n     methodology for formulating scores\n                                                     Place), Operations Center (OPC), and re-\n     and rankings;\n                                                     gional offices. The SEC\xe2\x80\x99s Los Angeles Re-\n                                                     gional Office (LARO) was selected as the re-\n(11) In consultation with OGC, ensure\n                                                     gional office to be evaluated based on its size\n     the SEC\xe2\x80\x99s real property leases pro-\n                                                     and the fact that OIT last assessed this Office\n     vide appropriate protections in the\n                                                     in 2008, and planned no further evaluation\n     event the SEC needs to terminate a\n                                                     until 2011.\n     lease before its expiration date;\n                                                         The privacy program assessment was con-\n(12) Revise the Security and Safety As-\n                                                     ducted in two phases. First, in June 2010, the\n     sessment document to include more\n                                                     OIG assessed the LARO\xe2\x80\x99s handling of PII\n     specific information, such as the\n                                                     data by conducting a physical inspection, in-\n     number of recent incidents in the\n                                                     terviews, and a Network Vulnerability Assess-\n     vicinity, the likelihood that future\n                                                     ment (NVA) of the SEC\xe2\x80\x99s computer network\n     incidents will occur or vulnerabilities\n                                                     (which included performing scans of a sample\n     will be exploited, recommended\n                                                     of 66 deployed workstations or laptops, and\n     countermeasures and the cost esti-\n                                                     two newly-imaged laptops that had not yet\n     mates for such countermeasures;\n                                                     been deployed). Second, in July 2010, the\n                                                     OIG performed an NVA of Station Place and\n(13) Implement final policies and proce-\n                                                     the OPC to evaluate their respective network\n     dures to ensure the Leasing Branch\n\n                                                35\n\x0csecurity postures, and conducted a \xe2\x80\x9cre-scan\xe2\x80\x9d                  \xe2\x80\xa2   Perform an assessment of an SEC re-\nof seven of the eight servers previously as-                      gional office (i.e., LARO) for proper\nsessed at the LARO. The purpose of the \xe2\x80\x9cre-                       handling of PII and adherence to SEC\nscan\xe2\x80\x9d was to determine if vulnerabilities iden-                   privacy policies and procedures;\ntified during the June 2010 scans were reme-                  \xe2\x80\xa2   Perform an NVA at the LARO, Station\ndiated by OIT. In addition, the OIG con-\n                                                                  Place, and the OPC to evaluate the\nducted an application vulnerability assessment\n                                                                  security posture of the SEC network in\non the Enforcement\xe2\x80\x99s case-tracking applica-\n                                                                  protecting PII data; and\ntion to determine how the Commission re-\ntained and secured its PII data within this ap-               \xe2\x80\xa2   Perform an application assessment to\nplication.                                                        ensure PII data is protected.\n\n      The primary objectives of the review were              Results\nto:\n                                                               Overall, the assessments conducted identi-\n      \xe2\x80\xa2   Evaluate the adequacy of the SEC                 fied significant concerns about the manner in\n          Privacy Office\xe2\x80\x99s policies and proce-             which the SEC handles PII data. Specifically,\n          dures, as well as its interaction and in-        the review of systems at the LARO, OPC, and\n          volvement with Commission offices                HQ identified high-level vulnerabilities affect-\n          and divisions to ensure SEC employ-              ing SEC computer systems that may be sub-\n          ees\xe2\x80\x99 privacy;                                    ject to exploitation and infiltration. The re-\n      \xe2\x80\xa2   Perform an in-depth analysis of pri-             view further found that while software vendors\n          vacy requirements and identify the               provide patches and updates to remediate se-\n          SEC processes and procedures that are            curity vulnerabilities identified in their soft-\n          used to conduct privacy reviews;                 ware, the SEC has not applied these critical\n                                                           patches and updates, in some cases dating\n      \xe2\x80\xa2   Assess whether the Privacy Office re-            back as far as 2006. The review also found\n          sponds to privacy issues in accordance           that the SEC has not regularly reviewed the\n          with governing SEC, National Insti-              application of patches on a consistent basis,\n          tute of Standards and Technology                 which leaves the Commission vulnerable to\n          (NIST), Office of Management and                 attack.\n          Budget (OMB), and other governmen-\n          tal guidance and regulations to deter-               Further, assessments performed during the\n          mine whether improvements were                   review yielded additional areas of concern.\n          needed;                                          The review found that:\n      \xe2\x80\xa2   Determine if the SEC has developed\n          and implemented technical, manage-                  \xe2\x80\xa2   OIT\xe2\x80\x99s categorization of network vul-\n          rial, or operational privacy-related                    nerabilities did not accurately reflect\n          controls to effectively mitigate known                  the actual risk to the environment;\n          risks that are inherent to Privacy Act              \xe2\x80\xa2   Base images deployed on laptops were\n          systems of records;                                     not compliant with Federal Desktop\n      \xe2\x80\xa2   Determine if the SEC has established                    Core Configuration (FDCC) require-\n          procedures and automated mecha-                         ments and all deviations were not dis-\n          nisms to verify privacy control effec-                  closed as required by OMB;\n          tiveness;                                           \xe2\x80\xa2   SEC laptops could connect to the SEC\n      \xe2\x80\xa2   Review governing Commission policy                      network via a local area network port,\n          and guidance, and follow up on prior                    while simultaneously being connected\n          OIG recommendations;                                    to an external wireless network, thus\n\n\n                                                      36\n\x0c       exposing the SEC network to potential               Recommendations\n       compromise by a malicious attacker;\n                                                             The OIG issued a final report containing\n   \xe2\x80\xa2   Design flaws existed in the develop-\n                                                         the result of its review on September 29,\n       ment of the Enforcement case-\n                                                         2010. The report included 20 recommenda-\n       tracking application;\n                                                         tions designed to address the vulnerabilities\n   \xe2\x80\xa2   PII at LARO was contained on shared               identified during the review, which included\n       drives that did not have access con-              15 recommendations to OIT or the Chief\n       trols; and                                        Operating Officer (COO), four to LARO, and\n   \xe2\x80\xa2   LARO employees violated SEC policy                one to OAS. Specifically, the report\xe2\x80\x99s recom-\n       by sending documents containing PII               mendations were as follows:\n       data to personal e-mail accounts and\n       by using portable media that was not                 (1)   OIT should apply patches and up-\n       encrypted or adequately secured.                           dates to the Commission\xe2\x80\x99s networks,\n                                                                  workstations and laptops on a timely\n     Additionally, interviews conducted of OIT                    basis;\nstaff and a physical assessment of office space\nand storage areas at the LARO, HQ and OPC                   (2)   OIT should implement procedures\nrevealed that documents containing PII data                       to regularly review whether a newly-\nwere insecurely left on work tables, fax ma-                      released patch should or should not\nchines, and desks; file rooms, file cabinets, and                 be applied to the environment;\noffices containing very sensitive information\nwere unsecured; the SEC had no finalized                    (3)   OIT should evaluate its risk assess-\npolicies or procedures for the destruction of                     ment process for scoring risk;\nportable media storage devices; and secured\nstorage bins were not accessible to all Com-                (4)   OIT should define a standard recog-\nmission staff.                                                    nized character set for every re-\n                                                                  sponse containing content in Hyper-\n     The review\xe2\x80\x99s findings indicated the exis-                    text Markup Language (the pre-\ntence of a significant risk to the SEC network                    dominant markup language for web\nand the security of the data and documents                        pages);\nhandled by the agency. While OIT has al-\nready begun taking steps to mitigate and re-                (5)   OIT must ensure FDCC compliance\nmediate risks by progressively applying certain                   for all base images deployed on desk-\ncritical patches, significant additional work                     tops and laptops;\nremains to be done.\n                                                            (6)   OIT must submit a complete list of\n     During the course of its audit, the OIG                      common security standard deviations\nbriefed GAO on its findings, including the se-                    to the NIST per OMB requirements;\ncurity vulnerabilities associated with the fail-\nures to apply critical patches and updates. As              (7)   OIT should ensure that wireless\na result, GAO expanded the scope of its fi-                       cards installed on laptops are turned\nnancial statement audit and eventually identi-                    off when connected to the SEC\xe2\x80\x99s\nfied the SEC\xe2\x80\x99s inconsistent patch management                      local area network;\nprogram as a new security control deficiency\nand reported information security as a mate-                (8)   OIT should implement an agency-\nrial weakness in internal control.                                wide policy regarding shared folder\n                                                                  structure and access rights;\n\n\n\n                                                    37\n\x0c(9)   OIT should ensure personal storage                       responsibilities for the disposal of\n      tab (PST) files are saved to a pro-                      portable media storage devices;\n      tected folder;\n                                                         (19) OIT should provide Commission\n(10) LARO should reemphasize the SEC                          staff with training on the handling,\n     Rules of the Road to LARO staff                          disposal, and storage of portable\n     through training and awareness pro-                      media storage devices; and\n     grams;\n                                                         (20) OAS should provide secured bins for\n(11) LARO should enforce its encryption                       the disposal of portable media stor-\n     policy to protect sensitive data the                     age devices that are easily accessible\n     SEC receives;                                            to all SEC employees, and the use\n                                                              and locations of these bins should be\n(12) The COO should implement a pol-                          clearly communicated to all employ-\n     icy that all portable media must be                      ees.\n     fully secured (i.e., locked in file cabi-\n     nets) when not in use;                                LARO and OAS fully concurred with the\n                                                      recommendations addressed to those Offices.\n(13) The COO should appoint a privacy                 The COO/Acting Chief Information Officer\n     point of contact at each regional                (CIO) concurred with 12 of the 15 recom-\n     office to ensure compliance with                 mendations that pertained to the COO and\n     Commission policies and procedures;              OIT, partially concurred with one recommen-\n                                                      dation, and did not concur with two recom-\n(14) LARO should ensure all file rooms                mendations. We expressed concern that the\n     and file cabinets are secured;                   COO/Acting CIO did not fully concur with\n                                                      all of our recommendations. We urged the\n(15) LARO should ensure that boxes of                 COO/Acting CIO to reconsider the opposi-\n     files stored in hallways are moved to            tion to turning off office wireless cards in-\n     secured areas;                                   stalled on laptops and to requiring that PST\n                                                      files be saved to a protected folder, as we be-\n(16) The COO should either implement                  lieve the recommended solutions would re-\n     a clean desk policy to ensure sensi-             move vulnerabilities and protect the SEC\xe2\x80\x99s\n     tive information is properly secured,            information. We also encouraged the COO/\n     or require that all offices be locked            Acting CIO to reconsider the objection to put-\n     when not occupied;                               ting network \xe2\x80\x9cLeast Privilege\xe2\x80\x9d access in place\n                                                      to ensure that only employees involved in a\n(17) The COO should conduct addi-                     particular case have access to data pertaining\n     tional training to ensure that staff             to the case. We are pleased that the COO/\n     fully understand the rules and poli-             Acting CIO plans to research other solutions\n     cies concerning the handling of PII              to identify potential courses of action for the\n     and sensitive data and their respon-             recommendations in which the COO/Acting\n     sibilities in protecting the SEC\xe2\x80\x99s               CIO did not fully concur. However, we re-\n     information;                                     main convinced that OIT should implement\n                                                      our recommendations to ensure that it reduces\n(18) OIT should finalize, approve and                 the likelihood of these vulnerabilities being\n     implement its operating procedures               exploited.\n     for \xe2\x80\x9cHard Drive Wiping and Media\n     Destruction,\xe2\x80\x9d and make staff aware                   The OIG\xe2\x80\x99s report, Assessment of the SEC\xe2\x80\x99s\n     of the procedures and their roles and            Privacy Program, is available on our website at\n\n\n                                                 38\n\x0chttp://www.sec-oig.gov/Reports/AuditsInspe            PRISM project and integration services. The\nctions/2010/485.pdf.                                  specific objectives of the review included:\n\n                                                         \xe2\x80\xa2   Identifying and reviewing all procure-\nReview of PRISM Automated                                    ment documentation related to the\nProcurement System Support                                   project management and integration\nContracts (Report No. 486)                                   support for PRISM;\n  Background                                             \xe2\x80\xa2   Determining whether procurements\n                                                             were properly awarded, in accordance\n     The OIG contracted with Regis and Asso-                 with the Federal Acquisition Regula-\nciates, PC (Regis), Independent Public Ac-                   tion (FAR) and SEC policies and pro-\ncountants, to conduct a review of support                    cedures;\ncontracts related to the SEC\xe2\x80\x99s automated                 \xe2\x80\xa2   Determining the validity of complaints\nprocurement system known as \xe2\x80\x9cPRISM.\xe2\x80\x9d\n                                                             received by the OIG related to the\nThe Office of Acquisitions (OA) within OAS\n                                                             award of the procurements for the\nis responsible for the agency\xe2\x80\x99s contract and\n                                                             management and integration of\nprocurement activities and processes. Over\n                                                             PRISM;\nthe past several years, OA had unsuccessfully\nattempted to automate its procurement func-              \xe2\x80\xa2   Determining whether there was\ntion. OA had procured two different auto-                    adequate oversight of PRISM; and\nmated procurement systems (APSs) to manage               \xe2\x80\xa2   Reviewing governing Commission\nacquisitions, both of which were discontinued.               policies and guidance and following up\nIn September 2008, the SEC acquired an                       on prior OIG recommendations to\nAPS named \xe2\x80\x9cPRISM,\xe2\x80\x9d which was intended to                     ensure they have been closed and cor-\nenable OA to accurately track and reconcile                  rective actions were completed.\nthe SEC\xe2\x80\x99s contracts and agreements and was\nimplemented on April 21, 2009.\n                                                        Results\n    Prior to the implementation of PRISM,\nOA awarded two additional contracts related                The review identified several deficiencies\nto PRISM. These included a contract                   related to PRISM contract administration ac-\nawarded in August 2008 to provide project             tivities that raised concerns about the future\nsupport for the implementation of PRISM,              success of the PRISM project. Specifically,\nand a task order awarded under another con-           the review found that repeated requests were\ntract to perform system coding and technical          made to OIT for management support for the\nservices related to the integration of PRISM          project. The Associate Executive Director for\nand the SEC\xe2\x80\x99s financial accounting system.            OAS advised OIT that the currently-assigned\nThe OIG had received anonymous com-                   project manager was unable to give the up-\nplaints regarding the procurements relating to        coming APS project adequate time and atten-\nthe management and integration of PRISM               tion and that the existing level of support was\nand initiated its review as a result of those         insufficient for the project to be successful. We\ncomplaints.                                           found that OIT responded that it simply did\n                                                      not have enough resources to provide the\n    Regis conducted its review of the PRISM           needed project management support. Not-\nsupport contracts from June to August 2010.           withstanding the negative experiences with\nThe overall objectives of the review were to          APSs in the past and the complexity of the\nassess the adequacy of the PRISM award and            current project, the PRISM project continued\ncontract administration activities, and of the        for over a year without an active OIT project\nmanagement and implementation of the                  manager.\n\n\n                                                 39\n\x0c    Moreover, the review found that OAS im-             2010. The report included five recommenda-\nproperly restricted competition without follow-         tions to help strengthen the Commission\xe2\x80\x99s\ning proper FAR requirements when it solicited           procurement and contract management func-\nand awarded a contract for PRISM project                tions, as well as project management of major\nsupport by inserting a clause that required that        information technology investments. The re-\na vendor\xe2\x80\x99s employees have a current SEC                 port contained the following specific recom-\nclearance or had one within the last 30 days.           mendations:\nThe review found that this requirement effec-\ntively precluded outside contractors from bid-             (1)   OIT should review the adequacy of\nding on the work. Additionally, e-mail corre-                    trained project officers who are\nspondence between the OAS Contracting Of-                        available to manage all current and\nficer (CO) and an OFM employee indicated                         anticipated projects and, if it deter-\nthat OAS had already pre-selected a contrac-                     mines that sufficient qualified project\ntor approximately a week before the solicita-                    officers are not available, it should\ntion was publicized. The contractor identified                   either provide an adequate number\nin the CO\xe2\x80\x99s e-mail was ultimately awarded the                    of qualified personnel or implement\ncontract.                                                        an alternative process for ensuring\n                                                                 proper oversight of projects;\n    In addition, the review found that there\nwas inadequate segregation of duties in the                (2)   OAS should issue guidance to staff\nmanagement of the PRISM support contract.                        on the proper use of restrictive\nSpecifically, neither a project manager nor a                    clauses in solicitations and the prohi-\nContracting Officer\xe2\x80\x99s Technical Representa-                      bition on pre-selection, and require\ntive (COTR) was appointed for the support                        that applicable FAR requirements\ncontract for at least one year. As a result, the                 are followed;\nCO was required to assume these roles and\nresponsibilities during that period. Further,              (3)   OAS should implement internal pro-\nwe noted that a critical deliverable under the                   cedures to limit COs from also as-\nPRISM support contract did not meet quality                      suming project management and\nstandards. The reconciliation tool developed                     COTR responsibilities on the same\nby the vendor did not appear to accurately                       project, in order to ensure duties are\nclassify data between PRISM and Momen-                           appropriately segregated;\ntum, which led to reconciliation errors and the\nexpenditure of additional resources to remedy              (4)   OAS should review existing contracts\nthese errors.                                                    to ensure that COTRs are assigned\n                                                                 for each contract as appropriate; and\n     Lastly, after we conducted follow-up on\nthe status of prior recommendations in OIG                 (5)   OAS, in conjunction with OFM,\nReport No. 471, Audit of the Office of Acquisi-                  should evaluate the reconciliation\ntions\xe2\x80\x99 Procurement and Contract Management Func-                 tool that did not meet quality stan-\ntions, issued on September 25, 2009, relating                    dards to determine, on a cost-benefit\nto strengthening management controls over                        basis, whether it would be feasible to\nthe contracting and procurement function, we                     correct the deficiencies identified.\nfound that eight of the ten recommendations\ncontained in that report remain open.                        Management concurred with four of the\n                                                        five recommendations. The OIG expressed its\n  Recommendations                                       disappointment in OAS\xe2\x80\x99s opposition to im-\n                                                        plementing procedures to limit contracting\n    The OIG issued a final report reflecting            officers from also assuming certain project\nthe results of the review on September 30,              management duties, as we believe this is a\n\n                                                   40\n\x0cprudent and appropriate step to ensure                        The OIG conducted this audit partially\nCommission projects are managed more effi-               because of the numerous complaints it had\nciently in the future. While the OIG was                 received from SEC employees about FedTrav-\npleased that management had agreed to im-                eler since the program\xe2\x80\x99s inception. These\nplement four of the report\xe2\x80\x99s five recommenda-            complaints included concerns about the impo-\ntions, we reiterated our belief that full imple-         sition of numerous administrative charges for\nmentation of all of the report\xe2\x80\x99s recommenda-             a variety of unexplained reasons. The audit\ntions will lead to significant improvement in            was conducted from May to August 2010.\nthe Commission\xe2\x80\x99s contract and procurement\noversight.                                                   The overall objective of the audit was to\n                                                         assess the adequacy of the service provided by\n    The OIG\xe2\x80\x99s report, Review of PRISM Auto-              FedTraveler and identify areas of improve-\nmated Procurement System Support Contracts, is           ment to reduce or eliminate fraud, waste, and\navailable on our website at                              abuse. Specific audit objectives included:\nhttp://www.sec-oig.gov/Reports/AuditsInspe\nctions/2010/486.pdf.                                        \xe2\x80\xa2   Surveying SEC employees to deter-\n                                                                mine the level of actual concern on\n    Additionally, based upon evidence of im-                    the part of SEC employees with Fed-\nproper pre-selection of a contractor obtained                   Traveler;\nduring this review, the OIG issued an investi-              \xe2\x80\xa2   Determining the source of administra-\ngative memorandum report, which is dis-\n                                                                tive fees charged by FedTraveler and\ncussed in the Investigations and Inquiries\n                                                                assessing the bases for the fees and\nConducted Section of this Report.\n                                                                whether the SEC and its employees\n                                                                are being unnecessarily overcharged by\n                                                                FedTraveler;\nAudit of the FedTraveler Travel Service\n(Report No. 483)                                            \xe2\x80\xa2   Determining whether FedTraveler has\n                                                                effective controls over hotel accommo-\n  Background                                                    dations and requires compliance with\n                                                                applicable rules and regulations and\n    The OIG conducted an audit of the Fed-                      avoidance of waste, fraud, and abuse;\nTraveler Travel Service (FedTraveler), which is                 and\nused to arrange the official travel of SEC staff.\nThe Federal Travel Regulation (FTR) man-                    \xe2\x80\xa2   Determining if there are areas where\ndated that federal agencies fully deploy an E-                  the SEC can reduce unnecessary costs.\nGov Travel Service (ETS) by September 30,\n2006. On March 31, 2005, after extensive                 Results\nevaluation of the three available ETS vendors,\nthe SEC issued a task order to procure Fed-                  Through a survey of SEC employees\nTraveler, which is a comprehensive, end-to-              launched to assist us in conducting the audit,\nend service used to plan, book, track, approve           the OIG found that SEC employees are sig-\nand request reimbursement for travel services            nificantly dissatisfied with FedTraveler. The\nfor managing federal employees\xe2\x80\x99 official travel.         largest percentage of respondents to a survey\nAlthough mandated to be deployed by Sep-                 question about costs responded that they\ntember 2006, FedTraveler was not fully de-               \xe2\x80\x9cstrongly disagreed\xe2\x80\x9d that the FedTraveler sys-\nployed at the SEC until June 2008.                       tem had lowered costs, even though one of the\n                                                         stated goals of the E-Gov initiative was \xe2\x80\x9cto\n                                                         significantly reduce the cost of Federal travel\n\n\n\n                                                    41\n\x0cmanagement and to achieve dramatic cost                  that there was significant confusion about\nsavings.\xe2\x80\x9d SEC employees who completed the                what fees should be properly charged. In fact,\nsurvey also generally responded that they did            during the course of the audit we were\nnot believe that the hotel booking process had           provided conflicting opinions from the CO\nbeen simplified, with one traveler comment-              and the COTR as to whether the pricing de-\ning, \xe2\x80\x9cBooking a hotel is one of the most frus-           tails in the SEC\xe2\x80\x99s task order or those found in\ntrating aspects of FedTraveler.\xe2\x80\x9d Further, re-            the GSA master contract applied to the Fed-\nspondents indicated that the FedTraveler sys-            Traveler contract. We concluded that this\ntem did not reduce the amount of time re-                confusion over the FedTraveler fee structure\nquired to make travel arrangements (the larg-            raised significant concerns about the level of\nest percentage of respondents, 19.1 percent,             the SEC\xe2\x80\x99s monitoring of the FedTraveler con-\n\xe2\x80\x9cstrongly disagreed\xe2\x80\x9d that the amount of time             tract.\nhad been reduced), even though another\nstated E-Gov objective was to simply the travel              The audit also identified several ways in\nprocess. In addition, a majority of survey re-           which the SEC could reduce transportation\nspondents did not believe the FedTraveler sys-           expenses by, among other things, educating\ntem was user friendly, although their satisfac-          travelers on utilizing the allowable exceptions\ntion level had increased over the past year, and         to the use of contract fares, and we made sug-\nthey reported being satisfied with Fed Traveler          gestions to reduce the significant funds cur-\nsupport services within the Commission.                  rently being expended for customer support,\n                                                         which included five full-time on-site contrac-\n     An area of the FedTraveler system that              tor representatives at an annual cost of over\nhas been particularly troubling to SEC travel-           $1 million (excluding transaction costs). We\ners (according to both the complaints we re-             found that requests for actual expenses for\nceived and the survey results) is the \xe2\x80\x9cexcessive\xe2\x80\x9d        lodging needed to be more closely scrutinized\nFedTraveler transaction fees. Our audit con-             and that increased controls were necessary for\nfirmed that the transaction fee structure                travel involving the use of a privately-owned\n(which includes three levels of transaction fees)        vehicle. The audit further found that a note-\nis confusing and often excessive. We also                worthy number of travelers were not receiving\nfound that no proper explanation of these                their reimbursements within a timely manner,\ntransaction fees is provided to SEC travelers.           causing them to pay travel expenses out of\nDuring our audit, we reviewed sample itiner-             their own pocket. Finally, the audit deter-\naries and found specific and numerous in-                mined that FedTraveler is not providing the\nstances of excessive fees. Fees for some trips           SEC the reporting capabilities that had been\ntotaled over $100 and, in several instances,             promised and, as a result, OFM is unable to\ntravelers were charged transaction fees that             thoroughly analyze the cost effectiveness of\nrepresented a large percentage of the total              the system and any anticipated changes.\ncost of their trips (one traveler was charged\nover $43 in transaction fees for a trip costing            Recommendations\nless than $125). In all, we found that Fed-\nTraveler charged SEC employees or contrac-                   The OIG issued a final report containing\ntors nearly $190,000 in transaction fees for             the results of the audit on September 22,\ntravel over a seven-month period.                        2010. The report included 20 recommenda-\n                                                         tions to help alleviate concerns expressed by\n    The audit further found that the fees being          Commission staff about FedTraveler and re-\ncharged by FedTraveler for trips reviewed in             duce transportation expenses. Specifically, the\nour sample were not in accordance with the               OIG recommended that OFM:\nfee schedule contained in the FedTraveler task\norder signed by the SEC in March 2005, and\n\n                                                    42\n\x0c(1)   Establish a working group to inde-                       penses for lodging prior to the rout-\n      pendently analyze the OIG survey                         ing of such requests to OFM;\n      results, comments, and suggestions\n                                                         (11) Work with FedTraveler to implement\n      and recommend improvements to\n                                                              additional system controls to ensure\n      the Associate Executive Director for\n                                                              travel using privately owned vehicles\n      Financial Management;\n                                                              is in accordance with the FTR;\n(2)   Develop regular means of communi-\n                                                         (12) Request that FedTraveler institute a\n      cation with Commission staff re-\n                                                              system control that notifies travelers\n      garding common FedTraveler issues\n                                                              when their expense reports have not\n      and solutions;\n                                                              been submitted within the permitted\n(3)   Consult with FedTraveler and its                        time period;\n      travel management center, CI\n                                                         (13) Request that FedTraveler provide the\n      Travel, to publish a guide for em-\n                                                              needed reporting capability to en-\n      ployees that clearly explains the\n                                                              able OFM to effectively monitor the\n      transaction fee structure;\n                                                              receipt and processing of expense\n(4)   Educate Commission staff on alter-                      reports in accordance with the FTR;\n      natives to using CI Travel in order to\n                                                         (14) Publish on its travel website best\n      minimize non-self service transac-\n                                                              practices with regard to preparation\n      tion fees;\n                                                              of expense reports so travelers can\n(5)   Work with FedTraveler to require                        avoid the most common mistakes\n      that travelers be notified when non-                    that lead to returned expense re-\n      self service transaction fees are                       ports;\n      charged by CI Travel;\n                                                         (15) Determine the feasibility and cost\n(6)   Determine the feasibility and cost                      effectiveness of implementing a split\n      effectiveness of capturing transaction                  disbursement method for payment of\n      fee costs in a distinct Budget Object                   travel expenses;\n      Class code;\n                                                         (16) Identify and request from FedTrav-\n(7)   Issue guidance to travelers regarding                   eler additional reporting capabilities\n      available exceptions to using the con-                  needed to successfully perform its\n      tract fare and tips for confirming that                 travel responsibilities and analyze the\n      no contract flights exist prior to re-                  cost effectiveness of implementing\n      questing a non-contract flight;                         such changes;\n(8)   Remind travelers of the FTR excep-                 (17) Examine the activity level of the cur-\n      tions for claiming actual expenses                      rent customer serve representatives\n      and require that travelers provide                      to determine if the number of repre-\n      clear justifications when claiming                      sentatives is appropriate; and\n      actual expenses;\n                                                         (18) Establish agency-specific\n(9)   Determine how the requirement that                      performance measures or other\n      travelers call three hotels prior to re-                means to monitor the service\n      questing actual expenses be en-                         provided by the customer service\n      forced, or provide travelers and ap-                    representatives.\n      proving officials with alternative\n      guidance;                                           The OIG also recommended that OAS\n(10) Require approving officials to review            request a legal opinion from OGC regarding\n     and approve requests for actual ex-              the amount and frequency of fees charged by\n                                                      FedTraveler to ensure the charges are appro-\n\n                                                 43\n\x0cpriate and in accordance with the GSA master             will assess the applicable SEC policies, proce-\ncontract and the SEC\xe2\x80\x99s task order, and request           dures and processes and make recommenda-\naccess to the master contract through GSA\xe2\x80\x99s              tions for improvement, as warranted. The\ndigital contract library and provide access to           OIG will also interview SEC managers and\nthe COTR to assist in contract monitoring.               staff involved in the exemptive order and no-\n                                                         action letter processes, which primarily in-\n    Management concurred with all of the                 clude staff in the Divisions of Investment\nreport\xe2\x80\x99s recommendations. The OIG\xe2\x80\x99s report,              Management, Corporation Finance the Trad-\nAudit of the FedTraveler Travel Service, is available    ing and Markets. In addition, the OIG will\non our website at                                        conduct a review of relevant documents and\nhttp://www.sec-oig.gov/Reports/AuditsInspe               analyze pertinent data in order to determine\nctions/2010/483.pdf.                                     whether applicants are complying with the\n                                                         terms and conditions of the exemptive orders\n                                                         and no-action letters that have been granted\nPENDING AUDITS AND EVALUATIONS                           or issued.\n\nAssessment of Compliance with Terms\nand Conditions of Exemptive Orders                       Audit of Time-And-Materials and\nand No-Action Letters                                    Labor-Hour Contracts\n    The SEC has authority to provide firms                    A time-and-materials contract provides for\nwith exemptions to the requirements of the               acquiring supplies or services on the basis of\nfederal securities laws through the issuance of          (1) direct labor hours at specified fixed hourly\nexemptive orders. Firms request exemptions               rates, including wages, overhead, general and\nfrom the SEC for proposed transactions,                  administrative expenses, and profit; and (2)\nproducts or services that might not comply               materials at cost, including material handling\nwith current securities law requirements. If             costs if appropriate. A labor-hour contract is\nthe SEC grants an application for an exemp-              a variation of a time-and-materials contract,\ntion, the requestor must adhere to the terms             differing only in that materials are not sup-\nand conditions of the exemptive order issued             plied by the contractor. The GAO has recog-\nby the Commission. Additionally, the SEC                 nized the risks inherent in these types of con-\nstaff may provide relief to firms in the form of         tracts because the government bears the risk\na \xe2\x80\x9cno-action\xe2\x80\x9d letter. A staff no-action letter           of cost overruns. The FAR provides that such\nincludes the specific terms and conditions of a          contracts may only be used when it is not pos-\nfirm\xe2\x80\x99s request, and advises the firm that if it          sible to estimate accurately the extent or dura-\nproceeds as described in the request for no-             tion of the work or to anticipate costs with any\naction relief, the SEC staff will not recom-             reasonable degree of confidence. In addition,\nmend an enforcement action against the firm.             the FAR requires appropriate government\nExemptive orders and no-action letters pro-              surveillance of contractor performance on\nvide the industry with the flexibility to intro-         time-and-materials and labor-hour contracts\nduce new and novel products and services to              in order to provide reasonable assurance that\nthe security markets without risking an SEC              the contractor uses efficient methods and cost\nenforcement action for violating the securities          controls.\nlaws.\n                                                             The OIG has contracted with an inde-\n    The OIG is performing an audit to evalu-             pendent public accounting firm to conduct an\nate the SEC\xe2\x80\x99s processes for ensuring adher-              audit of the SEC\xe2\x80\x99s procurement activities\nence to the conditions under which exemptive             related to time-and-materials and labor-hour\norders are granted and no-action letters are             contracts. The objectives of the audit are to\nissued to applicants. In this audit, the OIG\n\n                                                        44\n\x0cassess whether the SEC\xe2\x80\x99s contract monitoring           2010 Federal Information Security\nprocedures for these types of contracts are            Management Act Assessments\nadequate and comply with applicable regula-\ntions, to analyze whether contractor                        The OIG has contracted the services of\nperformance is in accordance with the con-             an outside consultant to perform an inde-\ntract terms and conditions, and whether con-           pendent review of the SEC\xe2\x80\x99s IT systems, in\ntract costs incurred are allowable, allocable,         accordance with the Federal Information Se-\nreasonable and adequately supported. Spe-              curity Management Act. The consultant will\ncifically, the audit will determine whether (1)        independently evaluate and report on how the\nthe qualifications of employees billed in each         SEC has implemented its mandated IT secu-\nlabor category meet the contractual qualifica-         rity requirements regarding the following\ntion requirements for their positions; (2) the         components:\nSEC properly reviews contractor invoices, the\ncorresponding timesheets and other necessary              \xe2\x80\xa2   Certification and Accreditation;\nsupporting documentation to ensure that costs             \xe2\x80\xa2   Configuration Management;\nare allowable, reasonable, and allocable to the\ncontract, and that billed rates do not exceed\n                                                          \xe2\x80\xa2   Security Incident Management;\nthe contract ceiling; and (3) the SEC ade-                \xe2\x80\xa2   Security Training;\nquately monitors all aspects of current and               \xe2\x80\xa2   Remediation/Plans of Actions and\npast contractor performance. The audit will\n                                                              Milestones;\ninclude a review of the applicable regulations,\npolicies and procedures, and an analysis of               \xe2\x80\xa2   Remote Access;\ninformation included in the contract files, as            \xe2\x80\xa2   Identity Management;\nwell as interviews of appropriate contracting\nand program staff.                                        \xe2\x80\xa2   Continuous Monitoring;\n                                                          \xe2\x80\xa2   Contractor Oversight; and\n                                                          \xe2\x80\xa2   Contingency Planning.\nAssessment of the SEC\xe2\x80\x99s Budget\nExecution Process\n                                                           The consultant will also conduct an as-\n    The OIG has contracted with an outside             sessment of two major SEC IT security com-\nconsulting firm to perform an assessment of            ponents. Specifically, assessments will be con-\nthe SEC\xe2\x80\x99s budget execution process. During             ducted of the SEC\xe2\x80\x99s (1) continuous monitor-\nthis assessment, the consultant will review the        ing efforts for IT operations; and (2) oversight\nsufficiency of management controls over the            of contractors\xe2\x80\x99 handling of SEC data. Fur-\nSEC\xe2\x80\x99s budget execution process and the effi-           ther, the consultant will determine whether\nciency of its operations. In addition, the con-        the SEC\xe2\x80\x99s IT security components meet OMB\nsultant will examine the lines of authority and        and NIST requirements.\nresponsibility with regard to Commission\nbudget decisions. The assessment will also\ninclude an examination of policies and proce-          Implementation and Compliance with\ndures designed to ensure appropriate spending          Homeland Security Presidential\nof approved budgets. Further, the consultant           Directive 12 (HSPD-12)\nwill review and assess the SEC\xe2\x80\x99s policies and\nprocedures for monitoring incurred obliga-                 The OIG has commenced an audit of the\ntions to ensure the apportionments and allot-          SEC\xe2\x80\x99s implementation and compliance with\nments limits are not exceeded.                         HSPD-12, \xe2\x80\x9cPolicy for a Common Identifica-\n                                                       tion Standard for Federal Employees and\n                                                       Contractors.\xe2\x80\x9d Specifically, the audit will\n\n\n                                                  45\n\x0cevaluate whether the Commission has fully            the roles and responsibilities of the various\nimplemented HSPD-12 as required. In addi-            offices and divisions that are involved in im-\ntion, the audit will evaluate the adequacy of        plementation of the HSPD-12 initiative.\nthe controls, processes, and procedures that         Finally, the OIG will determine whether the\nthe Commission uses to perform background            HSPD-12 processes and procedures are con-\ninvestigations, adjudicate results, and issue        sistently applied throughout the agency\xe2\x80\x99s\ncredentials. Further, the audit will evaluate        headquarters and regional offices.\n\n\n\n\n                                                46\n\x0cU.S. Securities and Exchange Commission\n\n                                                                      SEMIANNUAL\n                                                                      REPORT TO\n                                                                      CONGRESS\n                                                Office of\n                                               Inspector\n                                                General\n\n\n\n\n                                          INVESTIGATIONS\n                                          OVERVIEW                                                for the receipt of complaints, the OIG\xe2\x80\x99s web-\n                                                                                                  site also provides the public with an overview\n                                              The OIG\xe2\x80\x99s Office of Investigations re-              of the work of the Office of Investigations, as\n                                          sponds to allegations of violations of statutes,        well as links to some investigative memoranda\n                                          rules and regulations, and other misconduct by          and reports issued by the Office.\n                                          SEC staff and contractors. The misconduct\n                                          investigated ranges from criminal wrongdoing                The Office of Investigations conducts\n                                          and fraud to violations of SEC rules and poli-          thorough and independent investigations into\n                                          cies and the Government-wide standards of               allegations received in accordance with the\n                                          conduct. The OIG receives complaints                    Quality Standards for Investigations of the\n                                          through the OIG Hotline, an office electronic           CIGIE. In instances where it is determined\n                                          mailbox or by mail, facsimile or telephone. In          that something less than a full investigation is\n                                          addition, as discussed under the Management             appropriate, the Office of Investigations con-\n                                          and Administration Section of this Report, the          ducts a preliminary inquiry into the allegation.\n                                          OIG now also receives allegations from SEC              If the information obtained during the inquiry\n                                          employees of waste, abuse, misconduct, or               indicates that a full investigation is warranted,\n                                          mismanagement within the Commission                     the Office of Investigations will commence an\n                                          through the new OIG SEC Employee Sugges-                investigation of the allegation.\n                                          tion Hotline, which was established pursuant\n                                          to Section 966 of the Dodd-Frank Act.                       Upon the opening of an investigation, the\n                                                                                                  primary OIG investigator assigned to the case\n                                              The most common way complaints were                 prepares a comprehensive plan of investiga-\n                                          received during this reporting period contin-           tion that describes the focus and scope of the\n                                          ued to be through the OIG Hotline, which                investigation, as well as the specific investiga-\n                                          consists of both telephone and web-based                tive steps to be performed during the investi-\n                                          complaint mechanisms. Complaints may be                 gation. In all investigations, the OIG investi-\n                                          made anonymously by calling the Hotline,                gator interviews the complainant whenever\n                                          which is staffed and answered 24 hours a day,           feasible and conducts significant interviews\n                                          seven days a week. Complaints may also be               under oath and on-the-record. Where there is\n                                          made to the Hotline through an online com-              any reason to believe a witness will not provide\n                                          plaint form, which is accessible through the            truthful testimony, the OIG investigator pro-\n                                          OIG\xe2\x80\x99s website. In addition to a mechanism               vides an appropriate perjury warning. In ad-\n                                                                                             47\n\x0cdition, the OIG investigator gives assurances            Goldman Sachs & Co. (Report No.\nof confidentiality to potential witnesses who            OIG-534)\nhave expressed a reluctance to come forward.\n                                                           Opening of the Investigation\n    Where allegations of criminal conduct are\ninvolved, the Office of Investigations notifies              On April 23, 2010, the SEC OIG, in re-\nand works with the U.S. Department of Justice            sponse to a written request from the Honor-\n(DOJ) and the Federal Bureau of Investigation            able Darrell Issa (R-California), Ranking\n(FBI), as appropriate. The OIG also obtains              Member of the U.S. House of Representatives\nnecessary investigative assistance from the              Committee on Oversight and Government\nSEC\xe2\x80\x99s OIT, including the prompt retrieval of             Reform, and other members of the House of\nemployee e-mail accounts as requested by the             Representatives, opened an investigation into\nOIG investigators and forensic analysis of               allegations that SEC employees communi-\ncomputer hard drives. The OIG investigative              cated or coordinated with the White House,\nstaff meets with the Inspector General fre-              Members of Congress, or Democratic politi-\nquently to review the progress of ongoing                cal committees concerning the bringing, or\ninvestigations. The OIG investigative unit               the timing of bringing, an action against\nalso meets periodically with the Commission\xe2\x80\x99s            Goldman Sachs & Co. (Goldman), in order to\nEthics Counsel to coordinate activities.                 affect debate of the financial regulatory re-\n                                                         form legislation pending before the U.S. Sen-\n    Upon completion of an investigation, the             ate. Congressman Issa and other Members of\nOIG investigator prepares a comprehensive                Congress also alleged that SEC employees\nreport of investigation that sets forth in detail        may have had communications with the New\nthe evidence obtained during the investiga-              York Times concerning the SEC\xe2\x80\x99s complaint\ntion. Investigative matters are referred to the          against Goldman prior to the filing of that\nDOJ and SEC management as appropriate.                   complaint.\nIn many investigative reports provided to SEC\nmanagement, the OIG makes specific findings                  On July 22, 2010, Congressman Issa re-\nand recommendations, including whether the               quested that the OIG broaden its investigation\nOIG believes disciplinary or other action                to examine whether the timing of the\nshould be taken. The OIG requests that                   Commission\xe2\x80\x99s proposed settlement with\nmanagement report back on the disciplinary               Goldman related to either the financial regula-\naction taken in response to an OIG investiga-            tory reform legislation passed by the U.S. Sen-\ntive report within 45 days of the issuance of            ate the same day, or was an effort to avoid fur-\nthe report. The OIG follows up as appropri-              ther criticism in the press concerning the pro-\nate with management to determine the status              posed settlement. The OIG expanded its in-\nof disciplinary action taken in matters referred         vestigation to examine these additional issues.\nby the OIG.\n                                                           Scope of the Investigation\n\n                                                             On April 26, 2010, the OIG issued an\nINVESTIGATIONS AND INQUIRIES                             agency-wide document retention notice, in-\nCONDUCTED\n                                                         structing employees to preserve all documents\nAllegations of Improper Coordination                     related to the complaint filed against Gold-\nBetween the SEC and Other                                man on April 16, 2010, and the Division of\nGovernmental Entities Concerning the                     Enforcement\xe2\x80\x99s related investigation of Gold-\nSEC\xe2\x80\x99s Enforcement Action Against                         man.\n\n\n\n\n                                                    48\n\x0c    The OIG made numerous requests to the             maximizing and shaping positive press cover-\nSEC\xe2\x80\x99s OIT for the e-mails of current and              age.\nformer SEC employees for various periods of\ntime pertinent to the investigation. The                  The OIG analyzed in great detail the\ne-mails were received, loaded onto computers          information found relating to each major de-\nwith specialized search tools and searched on         cision made by the staff in connection with\na continuous basis throughout the course of           the Goldman investigation, the Goldman civil\nthe investigation. In all, the OIG reviewed e-        action, and the timing of that action. The\nmails for a total of 64 current or former SEC         OIG did not find that financial regulatory re-\nemployees for the time period pertinent to the        form legislation played a role in any of these\ninvestigation. The OIG estimates that it ob-          decisions. In addition, we found no evidence\ntained and searched over 3.4 million e-mails          that anyone at the SEC ever mentioned the\nduring the course of its investigation.               financial reform legislation in connection with\n                                                      the Goldman investigation or the filing of the\n    In addition, the OIG reviewed various             action against Goldman prior to the April 16,\ninternal SEC memoranda, databases, and                2010 filing.\nclosed Commission meeting records, as well as\nnumerous publicly available documents such                Further, many SEC witnesses in this inves-\nas court filings and newspaper articles. The          tigation, including SEC Chairman Mary\nOIG also requested information from The               Schapiro, testified that they were surprised or\nNew York Times Company and Bloomberg                  \xe2\x80\x9cshocked\xe2\x80\x9d at the extent of the media atten-\nMedia concerning whether, when, and how               tion given to the Goldman action. The belief\nthese organizations first learned about the           held by the SEC staff, which is corroborated\nSEC\xe2\x80\x99s action against Goldman.                         by e-mails, that the Goldman action might not\n                                                      have significant public impact, much less the\n    Finally, the OIG took the sworn testimony         impact it ultimately had, is another factor that\nof 32 witnesses and interviewed five other in-        argues against the idea that the SEC or its\ndividuals with knowledge of facts or circum-          staff were attempting to influence financial\nstances surrounding the SEC\xe2\x80\x99s investigation of        regulatory reform legislation.\nGoldman, the SEC\xe2\x80\x99s filing of its complaint\nagainst Goldman, and/or the SEC\xe2\x80\x99s settle-                  The OIG did not find evidence indicating\nment with Goldman.                                    that the SEC coordinated its investigation of,\n                                                      or its action against, Goldman with the Ex-\n  Summary of the Results of the                       ecutive Office of the President, the White\n  Investigation                                       House, any White House employees, any\n                                                      Member of Congress, any Congressional em-\n    Overall, the OIG investigation did not            ployee, the Democratic National Committee,\nfind evidence indicating that the SEC\xe2\x80\x99s inves-        the Democratic Senate Campaign Commit-\ntigation of, or its action against, Goldman was       tee, the Democratic Congressional Campaign\nintended to influence, or was influenced by,          Committee, or any of their employees. The\nfinancial regulatory reform legislation. The          OIG reviewed the e-mails of all of the SEC\nOIG found that the investigation\xe2\x80\x99s procedural         staff who played any role in the Goldman ac-\npath and timing was governed primarily by             tion, including the Chairman, Chief of Staff,\ndecisions relating to the case itself, as well as     Deputy Chief of Staff, Commissioners and\nconcerns about: (1) the facts surrounding the         their counsel, Enforcement staff, and the staff\ninvestigation\xe2\x80\x99s subject matter being publicized       of the Office of Legislative and Intergovern-\nprior to the SEC\xe2\x80\x99s filing of its action; (2)          mental Affairs. The documents reviewed and\nmaintaining a relationship with the New York          testimony taken indicated no information\nState Attorney General (NYAG); and (3)                about the SEC\xe2\x80\x99s investigation of Goldman\n\n\n                                                    49\n\x0cwas shared with any outside entities or indi-           ployees who may have played a role in, or\nviduals prior to the SEC\xe2\x80\x99s April 16, 2010 ac-           known about, the Goldman action, and taking\ntion against Goldman.                                   the sworn testimony of these employees, the\n                                                        OIG did not find evidence demonstrating that\n     The OIG investigation also found no evi-           anyone at the SEC shared information about\ndence indicating that the SEC coordinated the           its Goldman investigation with the media prior\nsettlement of its action against Goldman with           to the filing of its action against Goldman on\nthe Executive Office of the President, the              April 16, 2010.\nWhite House, any White House employees,\nany Member of Congress, any Congressional                   The OIG investigation made the following\nemployee, the Democratic National Commit-               specific findings with respect to Enforcement\xe2\x80\x99s\ntee, the Democratic Senate Campaign Com-                investigation of Goldman, the SEC\xe2\x80\x99s action\nmittee, the Democratic Congressional Cam-               against Goldman and the settlement of that\npaign Committee, or any of their employees.             action. On August 25, 2008, the Headquar-\nThe OIG found that settlement negotiations              ters Enforcement staff opened an investigation\nand approval proceeded independently of any             into potential misrepresentations by Goldman\nother governmental entities, any legislation, or        in connection with the structuring and market-\nany political entities. The documents reviewed          ing of a particular collateralized debt obliga-\nand testimony taken by the OIG yielded no               tion. On September 2, 2009, a senior\nindication of coordination or communications            Enforcement official assigned to the investiga-\nbetween the SEC and other governmental en-              tion wrote in an e-mail to others in\ntities concerning the settlement before its pub-        Enforcement that \xe2\x80\x9cthe very quickest\xe2\x80\x9d he ex-\nlic announcement.                                       pected the Goldman investigation to be on the\n                                                        Commission Calendar was November 2009,\n    An April 20, 2010 letter sent by several            and suggested that the target date for bringing\nMembers of Congress serving on the U.S.                 an action against Goldman and one individual\nHouse of Representatives Committee on                   be moved from September 2009 to December\nOversight and Government Reform to                      2009.\nChairman Schapiro specifically inquired\nwhether the SEC Chief of Staff or Deputy                    On November 13, 2009, Enforcement re-\nChief of Staff engaged in any communication             served a spot on the Commission Calendar for\nwith the Executive Office of the President, any         December 17, 2009, for the Commission to\nMembers of or employees of Congress, or any             consider the Enforcement staff \xe2\x80\x99s recommenda-\nDemocratic political committees. Our investi-           tion to sue Goldman and one of its vice presi-\ngation found no evidence indicating that either         dents. On November 24, 2009, Enforcement\nthe SEC Chief of Staff or Deputy Chief of               circulated the Action Memorandum for this\nStaff communicated with anybody outside the             recommendation to other SEC offices and di-\nSEC concerning the Goldman investigation or             visions for comment and confirmed that the\nthe Goldman action prior to the SEC\xe2\x80\x99s com-              Goldman matter would be on the Commission\nplaint being filed on April 16, 2010. Our in-           Calendar for December 17, 2009.\nvestigation also found no evidence indicating\nthat either of these individuals played any sig-            On December 8, 2009, Enforcement de-\nnificant role in the SEC\xe2\x80\x99s investigation of             cided to withdraw the Goldman matter from\nGoldman or the authorization of the action              the calendar. The OIG found that the deci-\nagainst Goldman.                                        sion to withdraw the Goldman case from the\n                                                        Commission Calendar was based upon a de-\n    Further, after conducting an extensive              termination by the Enforcement staff working\nsearch of the e-mails of dozens of SEC em-              on the investigation that they should take tes-\n\n\n                                                   50\n\x0ctimony from an additional Goldman witness.               this afternoon with the Front Office to discuss\nAfter the testimony of the Goldman witness               [the Goldman investigation]. We would like\nwas taken, on January 4, 2010, Enforcement               to have our recommendation against Gold-\nwrote to the Office of the Secretary, \xe2\x80\x9cWe will           man and [the vice president] considered at the\nbe re-sending this recommendation up to the              January 28 closed [C]ommission meeting and\nCommission on Friday, January 8. ENF\xe2\x80\x99s                   will get you a final action memo within the\nFront Office has asked that the matter be cal-           next day. . . .\xe2\x80\x9d On January 22, 2010, an\nendared for the second or third week in Janu-            Enforcement manager suggested in an e-mail\nary.\xe2\x80\x9d Enforcement also wrote in this e-mail,             to senior Enforcement staff that the SEC file\n\xe2\x80\x9cThis is a high-profile enforcement case that            its complaint against Goldman on Friday,\nrecently became time sensitive.\xe2\x80\x9d                         January 29, 2010, arguing that the \xe2\x80\x9c24-7 news\n                                                         cycle\xe2\x80\x9d makes irrelevant the SEC\xe2\x80\x99s traditional\n     The OIG investigation found that the                approach of avoiding filing significant\nGoldman case had become time-sensitive be-               Enforcement matters on Fridays. Others dis-\ncause SEC staff had learned that the Senate              agreed with this argument, noting the histori-\nPermanent Subcommittee on Investigations                 cal practice in Enforcement not to file cases on\n(PSI) was considering holding a hearing about            Fridays because it was assumed that the Sat-\nGoldman in late January 2010, and SEC staff              urday newspapers were not going to be as\nmembers were concerned that public                       widely read.\ninformation would be aired relating to the\nGoldman investigation. There was also evi-                   On January 24, 2010, Chairman Schapiro\ndence that the SEC preferred that the facts              conveyed her interest in \xe2\x80\x9cget[ting] the [Gold-\nabout Goldman\xe2\x80\x99s conduct be publicly aired                man] case out\xe2\x80\x9d to her Enforcement liaison in\nfirst by the SEC in a press release announcing           the Chairman\xe2\x80\x99s office. On January 26, 2010,\nthe action, after it completed its investigation.        members of the Enforcement staff met with\n                                                         Commissioner Troy Paredes to discuss the\n    The OIG investigation also found that on             Goldman matter. On January 27, 2010, the\nMarch 15, 2010, a Counsel to the Director                day before the Commission meeting in which\nand Deputy Director of Enforcement began a               the Goldman recommendation was to be\ndetail at PSI. Prior to beginning that detail,           heard, the decision was made to pull the rec-\nthis official sought advice from the SEC Ethics          ommendation from the Commission Calen-\nCounsel regarding the detail and was in-                 dar.\nstructed, \xe2\x80\x9cTo the extent you have any non-\npublic info about SEC investigations, I would                The OIG investigation found that the\nthink you would not be permitted to share                Goldman case was pulled a second time from\nthat with them.\xe2\x80\x9d Later in the detail, the                the Commission Calendar for two reasons: (1)\nEnforcement Counsel e-mailed SEC staff that              concerns expressed by Commissioners and\nshe would like to disclose the SEC\xe2\x80\x99s Goldman             further analysis of the case by Enforcement\ninvestigation to PSI. She was again instructed           staff regarding whether or not to charge an\nthat all non-public information she obtained             additional individual; and (2) a decision by\nwhile at the SEC must remain non-public and              Enforcement staff to obtain more evidence\nthat she could not disclose the fact of the              from purchasers of the collateralized debt ob-\nSEC\xe2\x80\x99s Goldman investigation. We did not                  ligation to strengthen the SEC\xe2\x80\x99s case against\nfind evidence that this individual disclosed any         Goldman.\ninformation about the Goldman investigation\nto PSI.                                                      The Enforcement staff took further inves-\n                                                         tigatory steps in the Goldman case over the\n    On January 19, 2010, Enforcement wrote               next several months and marshaled additional\nto the Office of the Secretary, \xe2\x80\x9cWe met again            evidence. On April 1, 2010, the Enforcement\n\n                                                    51\n\x0cstaff submitted another Action Memorandum              rangle settlement was that the SEC\xe2\x80\x99s \xe2\x80\x9cgoal is\nto the Commission recommending that the                always to get our enforcement message out\nCommission file a civil action against Goldman         widely,\xe2\x80\x9d and bringing two cases on the same\nand the vice president. On April 8, 2010, in an        day would lessen that objective and confuse the\ne-mail circulating a draft complaint against           media\xe2\x80\x99s focus. The Enforcement Director also\nGoldman, Enforcement wrote that it planned             noted that the SEC did not want both Gold-\nto send the Goldman complaint to New York              man and Quadrangle announced on the same\nto be filed \xe2\x80\x9ceither the afternoon of Wednesday         day because of the overwhelming amount of\nApril 14 or morning of Thursday April 15.\xe2\x80\x9d             briefing and other work involved for each mat-\n                                                       ter. He added that the SEC\xe2\x80\x99s Office of Public\n    The OIG investigation found that the               Affairs did not want the SEC to announce two\nCommission approved the filing of the Gold-            significant cases on the same day because the\nman action on Wednesday afternoon, April 14,           press would be diluted, as well as the logistics\n2010. On April 12, 2010, the SEC had                   involved in coordinating the publicity of the\nlearned that the NYAG planned to announce              SEC\xe2\x80\x99s actions.\non April 15, 2010, a $7 million settlement with\nQuadrangle Group LLC (Quadrangle) for its                  In the Enforcement Director\xe2\x80\x99s response to\nalleged involvement in kickbacks relating to           Chairman Schapiro\xe2\x80\x99s April 12, 2010\npension fund investments. The SEC was in a             e-mail about making sure that the SEC did not\nposition to file its own proposed settlement           announce the Goldman action on the same\nwith Quadrangle for similar alleged violations         day as Quadrangle, he wrote that the SEC\non the same day that the NYAG would an-                would announce the Quadrangle settlement on\nnounce its settlement. Later on April 12, 2010,        Wednesday and file the Goldman action\nthe SEC learned that the NYAG intended to              \xe2\x80\x9clikely\xe2\x80\x9d on Thursday. On the afternoon of\nannounce its settlement with Quadrangle on             Tuesday, April 13, 2010, the SEC learned that\nWednesday, April 14, instead of Thursday,              the NYAG had changed its schedule again, and\nApril 15.                                              that it now planned to announce the Quadran-\n                                                       gle settlement on Thursday, April 15. We ob-\n    The Enforcement Director informed                  tained testimony that once the NYAG moved\nChairman Schapiro that the SEC staff                   the Quadrangle announcement date to Thurs-\nplanned to file its settlement with Quadrangle         day, April 15, 2010, the SEC decided to delay\non Wednesday, April 14, 2010, at the same              the Goldman action until Friday, April 16.\ntime that the NYAG announced its settlement\nwith Quadrangle. Chairman Schapiro re-                      On the morning of Wednesday, April 14,\nsponded, \xe2\x80\x9cLet\xe2\x80\x99s make sure we don\xe2\x80\x99t announce            2010, the SEC\xe2\x80\x99s Director of Communications\nGoldman same day,\xe2\x80\x9d and testified that the              wrote in an e-mail to the Director of the SEC\xe2\x80\x99s\nQuadrangle case was an important case for the          Office of Public Affairs, that the Goldman ac-\nNYAG, and an important case for the SEC as             tion would be filed on Friday, April 16. On the\nwell. She stated that she did not want to de-          morning of Thursday, April 15, at 2:38 a.m.,\ntract from the announcement of the Quadran-            the Director of Communications e-mailed to a\ngle case by announcing the Goldman case at             variety of senior SEC officials in Enforcement,\nthe same time, explaining, \xe2\x80\x9cI was a little wor-        Public Affairs and the Chairman\xe2\x80\x99s Office a de-\nried that the Attorney General would be very           tailed timeline of the anticipated events for the\nupset if we announced multiple cases the same          remainder of that week. Events on this time-\nday.\xe2\x80\x9d                                                  line included the SEC\xe2\x80\x99s announcement of the\n                                                       Quadrangle settlement Thursday morning,\n   Another reason advanced by SEC staff                filing of the Goldman complaint Friday morn-\nwhy it would not be advisable to announce the          ing at 9:30 a.m., announcement of the Gold-\nGoldman action on the same day as the Quad-            man filing at 9:45 a.m., and public release of\n\n                                                  52\n\x0cthe OIG\xe2\x80\x99s Report on its Investigation of the            and did not have knowledge that the timing of\nSEC\xe2\x80\x99s Response to Concerns Regarding Rob-               the two events on the same day was inten-\nert Allen Stanford\xe2\x80\x99s Ponzi Scheme (OIG Stan-            tional.\nford Report) on Friday afternoon. The\nEnforcement staff continued to review and                   In addition, an OGC attorney sent an e-\nedit the complaint against Goldman on                   mail to a personal friend on the day that the\nThursday, April 15, 2010.                               Goldman action was announced and the OIG\n                                                        Stanford Report was released, stating, \xe2\x80\x9cWhat\n     The SEC filed the Goldman complaint                a coincidence that those two stories came out\nwith the U.S. District Court for the Southern           today. ;-).\xe2\x80\x9d He testified that his e-mail about\nDistrict of New York at 10:29 a.m. on Friday,           the timing of the two being a \xe2\x80\x9ccoincidence\xe2\x80\x9d\nApril 16, 2010. At 10:33 a.m. on April 16,              was based on purely his own speculation that\nthe SEC issued a press release concerning its           the timing of the two releases \xe2\x80\x9cwould be posi-\nfiling of the complaint against Goldman. At             tive damage control for the Commission\xe2\x80\x9d in\n1:57 p.m. on April 16, 2010, a few hours after          that the Goldman action and Stanford report\nthe SEC filed its action against Goldman, the           were put out on the same day in order for the\nSEC publicly released a redacted version of             Goldman action to drown out media coverage\nthe OIG Stanford Report, which contained                of the Stanford report.\ncriticisms of the SEC\xe2\x80\x99s response to concerns\nand allegations that Robert Allen Stanford\xe2\x80\x99s                These suspicions were likely fueled by the\ncompanies were conducting a fraudulent                  recent history of the SEC releasing OIG re-\nscheme. In part because of coverage of the              ports that criticized the agency on \xe2\x80\x9cslow\xe2\x80\x9d\nSEC\xe2\x80\x99s Goldman action, press coverage of the             news days. The SEC released the OIG\xe2\x80\x99s 457-\nOIG Stanford Report was limited.                        page report of investigation (ROI) concerning\n                                                        the failure of the SEC to uncover Bernard\n    Individuals both within and outside the             Madoff \xe2\x80\x99s Ponzi Scheme after 5:00 p.m. on\nSEC noted the suspicious timing of the SEC\xe2\x80\x99s            September 4, 2009, the Friday before a three-\nannouncement of the Goldman action and                  day holiday weekend. The SEC then released\nrelease of the OIG Stanford Report on the               the hundreds of exhibits supporting the OIG\xe2\x80\x99s\nsame day. A senior Enforcement official wrote           ROI concerning Madoff late on Friday, Octo-\nin an April 19, 2010 e-mail:                            ber 30, 2009. In addition, the OIG ROI con-\n                                                        cerning the SEC\xe2\x80\x99s failure to vigorously pursue\n       I\xe2\x80\x99m hearing that the Chair-                      an enforcement action against W. Holding\n       man\xe2\x80\x99s office is denying that                     Company, Inc., and Bear Stearns & Co., Inc.,\n       there was any connection be-                     was made public on Friday, October 10, 2008.\n       tween the decision to file the                   Consistent with this pattern, on April 16,\n       case on Friday and the decision                  2010, the same Friday that the OIG Stanford\n       to release the Stanford IG re-                   Report was publicly released and the Gold-\n       port the same day. They had                      man action was announced, the SEC also\n       better be careful, because they                  publicly released the OIG\xe2\x80\x99s ROI concerning\n       may get asked for e-mail, etc.                   the SEC\xe2\x80\x99s failure to timely investigate allega-\n       from Congress or pursuant to a                   tions of financial fraud at Metromedia Inter-\n       FOIA request.                                    national Group, Inc., which had been submit-\n                                                        ted to the SEC by the OIG almost two\nThis senior official testified that he \xe2\x80\x9cassumed         months earlier.\nthat it was not coincidental\xe2\x80\x9d that the OIG\nStanford Report and the Goldman action                      Although, as noted above, we found that\nwere made public on the same day, but that he           the decision on the timing of the release of\nwas not involved in decisions for either matter,        the Goldman report was based at least par-\n\n                                                   53\n\x0ctially on maximizing press coverage, and that                The OIG investigation also found that the\nensuring positive press coverage was a consid-           Enforcement staff did not notify Goldman of\neration in deciding when to file and announce            the impending filing of the complaint against\ncases, the OIG did not locate any concrete               Goldman prior to its filing. We found that a\nand tangible evidence in e-mails or testimony            senior Enforcement staff member on the\nthat the filing of the Goldman report was spe-           Goldman case left a message with the secre-\ncifically delayed to coincide with the issuance          tary for Goldman\xe2\x80\x99s counsel on Friday, April\nof the OIG Stanford Report. After the OIG                16, 2010, to give notice that the SEC had\nStanford Report was submitted to the Chair-              brought charges against Goldman and the\nman on April 1, 2010, the SEC staff under-               vice president. Telephone records for Gold-\ntook the process of redacting portions of the            man\xe2\x80\x99s counsel indicated that the first call re-\nreport before its public release, a task that ap-        ceived from the SEC on April 16 came at\npeared to proceed independently of the tim-              10:39 a.m., ten minutes after the SEC filed its\ning of the SEC\xe2\x80\x99s Goldman action.                         complaint against Goldman and seven min-\n                                                         utes after the SEC issued its press release\n    On April 9, 2010, the OGC sent an e-mail             about the Goldman action.\nto the counsels to the Commissioners, inform-\ning them that it planned to circulate a seriatim              Goldman\xe2\x80\x99s counsel testified that \xe2\x80\x9cit was\nAction Memorandum on Monday, April 12,                   unprecedented, [and] in [his] view it was con-\nseeking Commission authority by April 14 to              trary to decades of SEC experience that they\nrelease the OIG Stanford Report. On that                 would file without calling and giving an op-\nMonday, however, the OGC notified the                    portunity for the respondent to put a proposal\ncounsels to the Commissioners via e-mail that,           on the table.\xe2\x80\x9d Several senior Enforcement\ndue to further consideration of certain redac-           officials testified that it was the practice of\ntions, the Action Memorandum would not be                many SEC staff to notify a defendant that the\nready to circulate until Tuesday, April 13.              Commission had authorized the staff to file an\n                                                         action against the defendant in order to poten-\n     There was testimony that, by April 13,              tially obtain a \xe2\x80\x9csettlement at the 11th hour.\xe2\x80\x9d\n2010, a decision had been made to postpone               There was also testimony that one concern in\nrelease of the OIG Stanford Report from                  notifying Goldman of Commission authoriza-\nApril 14 to April 16 due to issues concerning            tion in advance of filing was as follows:\nthe redaction of the report and, thereafter, the\ndate of release for the OIG Stanford Report                     Goldman is a pretty sophisti-\nwas \xe2\x80\x9cfixed\xe2\x80\x9d for Friday, April 16. The Action                    cated player. \xe2\x80\xa6 [T]hey\xe2\x80\x99re\nMemorandum seeking Commission authority                         good at the public relations\nto release the OIG Stanford Report was ulti-                    game, and that \xe2\x80\xa6 if you know\nmately circulated to the Commissioners\xe2\x80\x99 coun-                   that something is coming from\nsels on April 14, and was not signed by all five                the SEC, you can maybe take\nCommissioners until the morning of Friday,                      certain actions to \xe2\x80\xa6 precondi-\nApril 16.                                                       tion the reporters about the\n                                                                case, and maybe the coverage\n    Accordingly, the OIG concluded that the                     would not be as favorable, from\nSEC\xe2\x80\x99s decision to file the action against                       the SEC\xe2\x80\x99s perspective.\nGoldman on April 16, 2010 was driven pri-\nmarily by its desire to avoid filing the action              The Enforcement Director testified that\non the same day that it announced the Quad-              Goldman\xe2\x80\x99s counsel called him a day or two\nrangle settlement.                                       after the filing of the Goldman complaint and\n                                                         \xe2\x80\x9cexpressed displeasure about really not having\n                                                         a chance to settle the case.\xe2\x80\x9d The Enforcement\n\n                                                    54\n\x0cDirector testified that he responded that                     The OIG investigation also found that the\nGoldman had many opportunities to settle the              SEC\xe2\x80\x99s decision to file its action against Gold-\ncase and the SEC had no reason to believe                 man during trading hours with no advance\nGoldman was interested in settling. He also               notice to Goldman or the New York Stock\ntestified that he did not necessarily think it was        Exchange (NYSE) resulted in market volatility,\na good idea for it to become standard practice            which concerned an NYSE Regulation official.\nfor the SEC to notify an entity when the                  However, the OIG did not find anything im-\nCommission has authorized filing an action                proper in this decision. The OIG recom-\nagainst the entity.                                       mended that Enforcement give further consid-\n                                                          eration to whether, under certain circum-\n   The OIG found that Section B(15)(c) of                 stances, filing an action after trading hours or\nSECR 18-2, \xe2\x80\x9cPress Relations Policies and Pro-             giving advance notice of an action to NYSE\ncedures,\xe2\x80\x9d stated, in part:                                Regulation or other self-regulatory organiza-\n                                                          tions is appropriate.\n        Every effort should be made to\n        avoid the possibility that defen-                      The OIG also analyzed the circumstances\n        dants in an SEC enforcement                       surrounding the timing of the SEC\xe2\x80\x99s July 2010\n        action first learn of the action                  settlement with Goldman. Settlement negotia-\n        when they read about it in the                    tions with Goldman began almost immedi-\n        newspapers or when they are                       ately after the SEC filed its complaint against\n        called by a reporter for com-                     Goldman. A few weeks prior to the July 15\n        ment about the SEC\xe2\x80\x99s com-                         settlement announcement, Goldman made it\n        plaint. The division, regional                    clear to the SEC staff that it wanted the mat-\n        or district office primarily re-                  ter settled, both prior to July 19, when Gold-\n        sponsible for the filing of a par-                man\xe2\x80\x99s answer to the SEC\xe2\x80\x99s complaint was due,\n        ticular complaint shall take all                  and prior to July 20, when Goldman\xe2\x80\x99s quar-\n        necessary steps to see that the                   terly earnings would be announced and at\n        defendants and/or their coun-                     which point Goldman would have to take and\n        sel are given timely advice con-                  announce an accounting reserve if no final\n        cerning the action.                               settlement had been reached.\n\n    While we found that the Office of Public                  The Enforcement Director testified that, at\nAffairs circulated its press policy, including            that point, \xe2\x80\x9ceverybody was of the view that if\nSECR 18-2, to Enforcement staff on at least               we\xe2\x80\x99re going to get [the settlement] done it had\nan annual basis, two members of the                       to get done before those two dates.\xe2\x80\x9d After set-\nEnforcement staff responsible for bringing the            tlement negotiations continued through June\nGoldman action testified that they were not               2010, on July 1, 2010, the Enforcement staff\naware of the provision quoted above.                      sent draft settlement papers to Goldman\xe2\x80\x99s\n                                                          counsel and by early July, the SEC staff had\n     Accordingly, the OIG found that the SEC              set a plan to bring Goldman\xe2\x80\x99s settlement offer\nstaff did not fully comply with SECR 18-2                 before the Commission on Thursday, July 15.\nbecause they did not make \xe2\x80\x9cevery effort\xe2\x80\x9d to               The Enforcement staff circulated the Action\nnotify Goldman of the SEC\xe2\x80\x99s action prior to               Memorandum recommending acceptance of\nfiling the action. In light of the differing views        Goldman\xe2\x80\x99s settlement offer to the Commis-\nexpressed by Enforcement management as to                 sioners on July 12, 2010. Senior Enforcement\nwhether notice should be given to a defendant             staff held meetings with each Commissioner\nin advance of an SEC enforcement action, the              prior to the July 15 Commission meeting to\nOIG recommended consideration of whether                  brief them on the proposed settlement with\nthis regulation should be revised.                        Goldman. On July 14, 2010, the Enforcement\n\n                                                     55\n\x0cStaff sent final versions of the settlement pa-         passed by the Senate, it was decided to an-\npers to Goldman\xe2\x80\x99s counsel for signature.                nounce the settlement that day as originally\n                                                        planned because, if the SEC held the Gold-\n     The OIG investigation found that the de-           man settlement filing and announcement an-\ncision was made to file and announce the set-           other day, people would then be able to say\ntlement with Goldman immediately after the              the SEC held it because of financial regula-\nCommission approved the settlement on July              tory reform.\n15, 2010, which was also the same day that\nthe financial regulatory reform bill passed the             The Commission approved the settlement\nSenate. The Enforcement Director testified              with Goldman in a closed Executive Session\nthat one of the reasons for the decision to an-         on the afternoon of July 15, 2010. At 3:15\nnounce the settlement on July 15 was a con-             p.m., pursuant to a timeline previously circu-\ncern about leaks to the media. A senior                 lated, a few minutes after the Commission ap-\nEnforcement official agreed that the primary            proved the settlement, the SEC issued a press\nreason that the SEC decided to announce the             advisory announcing a press conference to be\nsettlement quickly was \xe2\x80\x9cto beat leaks. \xe2\x80\xa6                held at 4:45 p.m., without identifying the topic\n[T]he more time that went by between the                of the press conference. At 4:28 p.m., as the\nCommission approving it and filing the set-             NYSE trading day was ending, the SEC re-\ntlement, the more likely it was going to get out        leased its public announcement of the settle-\nthere.\xe2\x80\x9d A senior official in the Chairman\xe2\x80\x99s             ment with Goldman.\noffice stated that the SEC decided to an-\nnounce the settlement quickly on Thursday,                   Based upon the foregoing evidence, the\nJuly 15, rather than wait until the next day            OIG investigation did not find that the SEC\xe2\x80\x99s\nbecause, \xe2\x80\x9cIf you wait until Friday and it leaks,        investigation of, or its action against, Goldman\nthen Goldman gets to control the story.\xe2\x80\x9d The            was intended to influence, or was influenced\nDirector of Public Affairs testified that there         by, financial regulatory reform legislation.\nwas \xe2\x80\x9cabsolutely\xe2\x80\x9d concern at the SEC that                The OIG also did not find that the settlement\nGoldman would provide information to the                between the SEC and Goldman was intended\nmedia and spin the settlement in Goldman\xe2\x80\x99s              to influence, or was influenced by, financial\nfavor.                                                  regulatory reform legislation. We also did not\n                                                        find that the SEC improperly coordinated its\n    The Enforcement Director also testified             Goldman investigation with outside entities or\nthat there may have been internal discussions           shared information about that investigation\nat the SEC that the filing of the proposed              with any journalists or members of the media\nGoldman settlement on the same day that fi-             prior to the filing of its action against Gold-\nnancial regulatory reform was approved by               man on April 16, 2010.\nthe Senate might lead to speculation that the\ntiming of the two events was connected, even                 The OIG did find that the SEC staff did\nthough it was not. However, the Enforcement             not fully comply with Administrative Regula-\nDirector testified that the SEC decided to              tion SECR 18-2 by failing to notify Goldman\nkeep to its schedule because it would have              of the SEC\xe2\x80\x99s action until after it had filed the\nbeen inappropriate to delay the settlement be-          action, and that this decision, in combination\ncause of this concern. Others concurred that            with the decision not to give notice to NYSE\nwhile there was concern that the SEC would              Regulation in advance of filing the action and\nbe perceived poorly by announcing the pro-              to file the action during market hours, resulted\nposed Goldman settlement on the same day                in an increase in volatility in the securities\nthat financial regulatory reform legislation was        markets on the day of the filing.\n\n\n\n\n                                                   56\n\x0c  Recommendations in the Report of                     garding the SEC\xe2\x80\x99s proposed $33 million set-\n  Investigation                                        tlement with Bank of America (BofA), for false\n                                                       and misleading statements made in connec-\n    The OIG recommended that the Chair-                tion with its merger with Merrill Lynch & Co.\nman and the Enforcement Director: (1) give             (Merrill), filed in U.S. federal court on August\nconsideration to, and then communicate to              3, 2009. Specifically, Congressman Cum-\nEnforcement staff, the circumstances, if any,          mings referenced an attached August 4, 2009\nunder which Enforcement should give notice             Washington Post article that raised the following\nto NYSE Regulation or other self-regulatory            conflict of interest issues that could potentially\norganizations in advance of filing an                  arise from SEC enforcement actions against\nenforcement action in which the defendant              entities that, like BofA, were in receipt of\nhas not been given notice that an action is            Troubled Asset Relief Program (TARP) funds:\nimminent; (2) give consideration to, and then\ncommunicate to Enforcement staff, the cir-                 (1) Whether the enforcement action may\ncumstances, if any, under which Enforcement                     harm the firm\xe2\x80\x99s viability, and\nshould file an enforcement action, and issue                    threaten systemic risk to the financial\nany related press releases or advisories, after                 industry;\nthe close of trading hours for the exchange on\nwhich the securities of the defendant entity               (2) Whether the fines levied would essen-\ntrades; and (3) give consideration to whether                   tially be paid with taxpayer funds;\nSECR 18-2 should be revised, and to then\ncommunicate to Enforcement staff whether                   (3) Whether the fines would harm the\nand in what circumstances advance notice                        shareholder investment in the firm,\nshould be given to defendants in an                             when the shareholder is the U.S.\nenforcement action.                                             taxpayer; and\n    The OIG\xe2\x80\x99s report of investigation was is-              (4) Whether the role played by Federal\nsued just prior to the end of the semiannual                    Reserve or Treasury officials in the\nreporting period. Consequently, as of the end                   actions upon which fines were issued\nof the period, no action had yet been taken by                  may have been significant to the oc-\nmanagement with respect to the OIG\xe2\x80\x99s rec-                       currence of the violation but cannot\nommendations.                                                   be investigated by the SEC.\n\n                                                           Congressman Cummings asked the SEC\nInvestigation of the Circumstances                     OIG and SIGTARP, respectively, to investi-\nSurrounding the SEC\xe2\x80\x99s Proposed                         gate the extent to which the issues above ex-\nSettlements with Bank of America,\nIncluding a Review of the Court\xe2\x80\x99s                      isted in Enforcement\xe2\x80\x99s first proposed settled\nRejection of the SEC\xe2\x80\x99s First Proposed                  action against BofA, as well as the potential\nSettlement and an Analysis of the                      for these conflicts to occur in future actions\nImpact of Bank of America\xe2\x80\x99s Status as                  against TARP recipients. In response, the\na TARP Recipient (Report No. OIG-522)                  SEC OIG opened an official investigation on\n                                                       August 6, 2009.\n  Opening of the Investigation\n\n    On August 6, 2009, the Honorable Elijah                Subsequent to opening its investigation,\nE. Cummings (D-Maryland), Member of                    the OIG learned that the Honorable Jed S.\nCongress, U.S. House of Representatives, sent          Rakoff, U.S. District Judge for the Southern\na letter to the SEC OIG and to the Office of           District of New York, rejected the\nthe Special Inspector General for the Trou-            Commission\xe2\x80\x99s proposed settlement with BofA\nbled Asset Relief Program (SIGTARP) re-                on September 14, 2009. Shortly after Judge\n\n                                                  57\n\x0cRakoff rejected the settlement, Senior Coun-             randa, including an internal policy memoran-\nsel from the Senate Banking Committee con-               dum to the Commission establishing an\ntacted the IG and asked if the OIG\xe2\x80\x99s investi-            Enforcement policy for seeking civil penalties\ngation of this matter would include the cir-             against TARP recipients; (4) the transcript of\ncumstances surrounding Judge Rakoff \xe2\x80\x99s deci-             Judge Rakoff \xe2\x80\x99s August 10, 2009 hearing on\nsion to reject the settlement, including analysis        whether he should approve the SEC\xe2\x80\x99s first\nof whether Enforcement had vigorously and                proposed settlement with BofA; and (5) nu-\nappropriately enforced the securities laws in its        merous press articles about both SEC settle-\ninvestigation of BofA that led to the settlement         ments with BofA. In addition, the OIG took\nrejected by Judge Rakoff. Based upon this                on-the-record, under-oath testimony of nearly\ndiscussion, the OIG expanded the scope of its            20 SEC employees, a former BofA employee,\ninvestigation to analyze the circumstances sur-          and the Special Inspector General for the\nrounding the settlement rejected by Judge                Troubled Asset Relief Program. Finally, the\nRakoff.                                                  OIG submitted written questions to the\n                                                         NYAG and received written responses from\n    On February 4, 2010, the SEC and BofA                the law enforcement agency.\nsubmitted a revised proposed settlement,\nwhich Judge Rakoff ultimately approved on                  Summary of the Results of the\nFebruary 22, 2010. The second settlement                   Report of Investigation\nincluded a civil monetary penalty of $150 mil-\nlion, specific remedial undertakings that BofA                The issues giving rise to the OIG investi-\nwas required to implement and maintain for               gation stemmed from the global financial crisis\nthree years, and a Statement of Facts pre-               that came to the fore in 2008. Specifically, to\npared by the Enforcement staff and agreed to             stabilize the financial system and encourage\nby BofA describing the details behind the                banks to resume lending in the wake of the\nSEC\xe2\x80\x99s allegations. Pursuant to subsequent                recent global financial crisis, Congress enacted\nconversations with the Congressional officials,          the Emergency Economic Stabilization Act of\nthe OIG further expanded its investigation to            2008 (EESA) (Division A of Public Law 110-\ninclude an analysis of the circumstances sur-            343, enacted October 3, 2008). EESA estab-\nrounding the revised settlement to determine             lished the TARP, which provided the U.S. De-\nwhether the charging decisions in each in-               partment of the Treasury with the power to\nstance were made appropriately.                          purchase hundreds of billions of dollars in\n                                                         illiquid assets from banks and other financial\n  Scope of the Investigation                             institutions and to take other measures to bol-\n                                                         ster lending and unfreeze the credit markets.\n    In the course of its investigation of the            EESA also established SIGTARP to conduct,\ncircumstances surrounding the two BofA set-              supervise and coordinate audits and\ntlements and potential conflicts of interest, the        investigations of the purchase, management\nOIG obtained and reviewed over 500,000 e-                and sale of assets under TARP. BofA, itself a\nmails, and numerous supporting attachments,              recipient of TARP funding, and Merrill\nfor over 15 employees in five different offices          signed a merger agreement in September\nand divisions within the SEC. The OIG also               2008, and in November 2008, the companies\nreviewed numerous supporting materials in-               filed a definitive joint proxy statement solicit-\ncluding, but not limited to: (1) drafts and final        ing shareholder votes for approval of the\nversions of internal memoranda to the Com-               merger.\nmission recommending an enforcement action\nagainst BofA; (2) pleadings filed and judicial                 BofA, however, did not disclose to its\norders issued in the BofA litigation; (3) drafts         shareholders that it had agreed to allow Mer-\nand final versions of internal policy memo-              rill to pay employees up to $5.8 billion in dis-\n\n\n                                                    58\n\x0ccretionary bonuses. BofA also did not disclose          settlement with BofA, the evidence did not\nthat it was aware, prior to a December 5,               show that SEC staff failed to diligently and\n2008 vote on the merger, that Merrill had net           zealously investigate potential securities law\nlosses of $7 billion in October and November            violations. The Enforcement attorneys who\n2008. On January 16, 2009, after the merger             worked on both proposed settlements ably\nhad been approved, BofA reported that Mer-              operated under considerable time constraints\nrill had sustained a net loss of $15.3 billion          to investigate and bring actions against BofA\nand that BofA had obtained $20 billion in               for violations of the federal securities laws in\nTARP funds to assist in the acquisition. On             connection with the Merrill merger. The\nthe next trading day, BofA\xe2\x80\x99s stock price fell by        OIG\xe2\x80\x99s investigation chronicled the decisions\nnearly 30 percent.                                      made by both Enforcement teams for \xe2\x80\x9clessons\n                                                        learned\xe2\x80\x9d and informational purposes and de-\n     After Merrill\xe2\x80\x99s losses were disclosed, sev-        scribed how the second Enforcement team\xe2\x80\x99s\neral state and federal law enforcement agen-            strategic determinations and clear under-\ncies \xe2\x80\x93 including the SEC, the DOJ, the NYAG             standing of the statutory basis for individual\nand SIGTARP \xe2\x80\x93 investigated the circum-                  liability led to a settlement being accepted by\nstances of the merger. On July 30, 2009, the            the Court.\nCommission authorized Enforcement to file\nan action against BofA for failure to disclose               The OIG also did not find evidence of the\nthe agreement authorizing Merrill to pay up             improper conflicts of interest that formed the\nto $5.8 billion in discretionary year-end bo-           basis of the August 6, 2009 Congressional let-\nnuses. At the same time, the Commission ap-             ter to the OIG and SIGTARP requesting this\nproved the general terms of Enforcement\xe2\x80\x99s               investigation. The OIG did find that BofA\xe2\x80\x99s\nrecommended settlement with BofA. On                    status as a TARP recipient had an impact on\nAugust 3, 2009, the SEC formally reached a              the favorable settlement the staff first recom-\nproposed settlement with BofA, the terms of             mended to the Commission.\nwhich were: (1) entry of a final judgment\npermanently enjoining the company from vio-                 Specifically, the OIG found that in or\nlating Section 14(a) of the Exchange Act; and           around January 2009, the SEC NYRO\n(2) a civil monetary penalty against the com-           Enforcement staff began its investigation of\npany in the amount of $33 million. The pro-             the circumstances surrounding BofA\xe2\x80\x99s ap-\nposed settlement was rejected by the Court,             proximately $50 billion acquisition of Merrill\nresulting in a second proposed settlement of            on January 1, 2009. The Enforcement staff\n$150 million with remedial undertakings                 began investigating allegedly false and mis-\nrather than a permanent injunction. The                 leading statements made by BofA in a No-\nCourt approved the second proposed settle-              vember 3, 2008 joint proxy statement filed in\nment in February 2010.                                  connection with the merger. The initial inves-\n                                                        tigation involved a disclosure schedule detail-\n     During its investigation, the OIG analyzed         ing an agreement to pay up to $5.8 billion \xe2\x80\x93\nthe SEC enforcement actions against BofA,               nearly 12 percent of the total consideration to\nincluding the first proposed settlement and its         be exchanged in the merger \xe2\x80\x93 in discretionary\nrejection by the Court; the second proposed             year-end bonuses to Merrill executives for\nsettlement and its acceptance by the Court;             2008. The disclosure schedule was omitted\nand what role, if any, BofA\xe2\x80\x99s status as a TARP          from the proxy statement and its contents\nrecipient played in the SEC\xe2\x80\x99s investigation,            were not disclosed before the shareholders\xe2\x80\x99\ncharging decisions and settlement discussions.          vote on the merger on December 5, 2008.\n\n   Overall, the OIG found that despite the                  The staff also began investigating an al-\nCourt\xe2\x80\x99s rejection of the SEC\xe2\x80\x99s first proposed           leged failure by BofA to disclose, prior to the\n\n                                                   59\n\x0cDecember 5, 2008 shareholder meeting, ex-                 ing of securities, including allowing the issuer\ntraordinary fourth quarter losses that Merrill            to file an automatic shelf registration\nsustained in October and November 2008.                   statement with the SEC. The safe harbor\nHowever, we found that the decision was                   provisions of Section 27A(c) of the Securities\nmade to bring an action solely on the issue of            Act and Section 21E(c) of the Exchange Act\nBofA\xe2\x80\x99s failure to disclose the agreement to pay           afford limited protection from liability or pen-\nthe year-end bonuses to company executives,               alty for certain issuers who make forward-\nat least partially, on the staff \xe2\x80\x99s perceived need        looking statements that turn out to be false,\nto bring the Enforcement case against BofA                provided that certain statutory criteria are\nquickly. The OIG found the Enforcement                    met.\nstaff felt pressure to bring a case against BofA\npromptly because of the internal interest in                  The Commission has the power to waive\nthe case and its high-profile nature. There               certain collateral consequences of an anti-\nwas also initial skepticism on the part of sen-           fraud injunction, including the statutory dis-\nior Enforcement officials with regard to the              qualification from WKSI status and from the\nviability of an action regarding the failure to           safe harbor for forward-looking statements.\ndisclose the extraordinary fourth quarter                 Prior to entry of the first proposed settlement,\nlosses.                                                   BofA requested that the Commission grant it\n                                                          waivers from both WKSI and safe harbor dis-\n    On August 3, 2009, the SEC announced                  qualification. The waiver most important to\nin a press release that it had \xe2\x80\x9ccharged Bank of           BofA involved its status as a WKSI filer.\nAmerica Corporation for misleading investors              However, the alleged violation of the proxy\nabout billions of dollars in bonuses that were            solicitation rules was directly related to BofA\xe2\x80\x99s\nbeing paid to Merrill Lynch & Co. executives              own disclosures. Therefore, BofA did not\nat the time of its acquisition of the firm.\xe2\x80\x9d              meet the \xe2\x80\x9ctraditional criteria\xe2\x80\x9d for granting a\nAlso according to the press release, \xe2\x80\x9cBank of             WKSI waiver.\nAmerica agreed to settle the SEC\xe2\x80\x99s charges\nand pay a penalty of $33 million.\xe2\x80\x9d The press                  Initially, Division of Corporation Finance\nrelease noted that \xe2\x80\x9cas Merrill was on the brink           (CF) officials took the position that under the\nof bankruptcy and posting record losses, Bank             SEC\xe2\x80\x99s standard criteria, BofA should not re-\nof America agreed to allow Merrill to pay its             ceive a WKSI waiver. CF also objected to the\nexecutives billions of dollars in bonuses.                fact that the proposed settlement was condi-\nShareholders were not told about this agree-              tioned on the granting of the WKSI waiver,\nment at the time they voted on the merger.\xe2\x80\x9d               noting that the previous Commission had\nThe press release stated further that the set-            been \xe2\x80\x9cstrongly against being presented with\ntlement was \xe2\x80\x9csubject to court approval.\xe2\x80\x9d                  contingent settlement offers.\xe2\x80\x9d CF also ex-\n                                                          plained its own opposition to conditioning set-\n     The OIG investigation found that as the              tlements on granting waivers because the\nSEC and BofA negotiated settlement terms,                 waiver becomes a bargaining chip that can be\nattorneys representing BofA raised the issue of           negotiated away and thus, the impact of the\npotential collateral consequences that might              collateral consequences of the antifraud provi-\narise were it to agree to a settlement that in-           sions may be eroded.\ncluded an injunction against future violations\nof the antifraud provisions of the federal                     The OIG investigation found that up until\nsecurities laws. The potential collateral con-            the morning of the July 30, 2009 closed\nsequences for BofA included losing its status as          Commission meeting at which the proposed\na Well-Known Seasoned Issuer (WKSI) and                   settlement was to be considered, it appeared\nits safe harbor for forward-looking statements.           that CF would continue to oppose BofA\xe2\x80\x99s re-\nWKSI status allows an issuer to use advanta-              quest for the WKSI waiver. However, at a\ngeous procedures in the registration and offer-           meeting with BofA and Enforcement that\n                                                     60\n\x0cmorning, BofA officials convinced CF to alter            event that made a case against individuals\nits view of BofA\xe2\x80\x99s WKSI waiver request. In               more difficult. Further, the OIG found that\nthis meeting, BofA argued that the dire state of         when considering whether to name individu-\nthe financial markets made it critical that it be        als in its first proposed settlement of its action\nable to raise money quickly. CF noted that               against BofA, members of the Enforcement\nalthough BofA did not meet the \xe2\x80\x9ctraditional              team were unaware that individuals could di-\ncriteria\xe2\x80\x9d for a WKSI waiver, it decided not to           rectly violate Exchange Act Section 14(a) and\noppose the waiver because of \xe2\x80\x9cdeference                  Exchange Act Rule 14a-9, and as a result, the\ngiven to the fact that BofA was a TARP re-               team was left to consider whether the indi-\ncipient\xe2\x80\x9d and because \xe2\x80\x9cit would not be in the             viduals in this case could be sued successfully\ninterest of the market or investors to prevent           under Exchange Act Section 10(b) and\n[BofA] from getting to the market as quickly             Exchange Act Rule 10b-5 \xe2\x80\x93 as either direct\nas [its] competitors.\xe2\x80\x9d                                   violators or as aiders and abettors. The team\n                                                         then considered whether the individuals in\n    Thus, the OIG found that the traditional             question possessed the requisite intent for a\ncriteria for determining WKSI waiver requests            successful 10(b)/10b-5 case, when a 14(a)/\nwere not applied to BofA. CF agreed to rec-              14a-9 case potentially could have been made\nommend that BofA receive a conditional                   with a lower showing of intent (negligence as\nWKSI waiver based upon its TARP status,                  opposed to scienter).\nand the related concern that in the economic\nenvironment denying BofA a WKSI waiver                       With Section 10(b)/Rule 10b-5 being con-\ncould have had an adverse impact on BofA                 sidered as the only avenue available, the team\nand the entire market. The OIG found this                decided that the evidentiary hurdle, and re-\ndeparture from general SEC practice note-                sulting litigation risk, were simply too high to\nworthy, although BofA never actually received            pursue individuals. The misperception of this\nthe waiver because the Court rejected the                higher evidentiary hurdle may have been a\nproposed settlement.                                     reason why the OIG found no evidence of\n                                                         any substantive or significant analysis of the\n    After the SEC filed the proposed settled             question of whether to charge individuals in\naction in the U.S. District Court for the                connection with the first proposed settlement\nSouthern District of New York, Judge Rakoff              of the BofA case until after the proposed set-\nheld a hearing during which the SEC and                  tlement was filed with the Court.\nBofA presented arguments supporting the\nproposed settlement. On September 14,                         In contrast to the approach of the first\n2009, the Court issued a Memorandum Order                Enforcement team, the second Enforcement\nrejecting the SEC\xe2\x80\x99s proposed settlement with             team considered the issue of the appropriate-\nBofA, and opined that the SEC\xe2\x80\x99s normal pol-              ness of naming individuals and engaged in a\nicy was to bring actions against individuals             very substantive and thorough analysis of\nwho are responsible for securities law viola-            whether a viable legal theory existed for pur-\ntions as well as the responsible issuers. The            suing individuals. The second team did not\nOIG investigation found that Enforcement                 appear confused about whether individuals\nlooked at this issue after the Court rejected the        could be charged as direct violators of\nproposed settlement.                                     Exchange Act Section 14(a) and Exchange Act\n                                                         Rule 14a-9, acknowledging that the SEC has\n    The OIG investigation found that the                 historically charged individuals for direct vio-\nBofA case differed from other cases where in-            lations of these statutes. Even after perform-\ndividuals were not named \xe2\x80\x93 notably because               ing this substantive analysis, however, the sec-\nthere was no rule change or other intervening            ond Enforcement team concluded that there\n\n\n                                                    61\n\x0cwere insufficient legal and factual bases to            future misconduct that an injunction could\ncharge individuals.                                     not. These measures, known as \xe2\x80\x9cundertak-\n                                                        ings,\xe2\x80\x9d were designed to remedy the alleged\n     In addition, after the Court rejected the          underlying violations and to create safeguards\nSEC\xe2\x80\x99s first proposed settlement, the second             in the areas in which BofA was deficient to\nEnforcement team conducted extensive dis-               avoid a recurrence of the problem. In addi-\ncovery, added a new claim to strengthen its             tion, these undertakings had the additional\nlitigation position and focused at great length         effect of allowing the proposed settlement to\non developing the facts necessary to file a sec-        proceed without triggering the WKSI provi-\nond case alleging a failure by Merrill to dis-          sions that were a source of considerable dis-\nclose the fourth quarter losses. In January             cussion during the Commission\xe2\x80\x99s approval of\n2010, the Commission filed the fourth quarter           the first proposed settlement.\nlosses action as a related case to the bonuses\naction, charging BofA with violating Section                 A third major concern was the recom-\n14(a) and Rule 14a-9 by failing to disclose,            mended civil penalty of $33 million against\nprior to the December 5 shareholder meeting,            only the company. According to the Court,\nthe \xe2\x80\x9cextraordinary losses\xe2\x80\x9d that Merrill sus-            the $33 million was a \xe2\x80\x9ctrivial penalty for a\ntained in October and November 2008. This               false statement that materially infected a\nadditional case was critical to the second pro-         multi-billion-dollar merger and thus, would be\nposed settlement with BofA because it created           imposed not on the individuals putatively re-\n(along with the Court\xe2\x80\x99s rejection of the first          sponsible, but on the shareholders, thus fur-\nproposed settlement) the leverage necessary to          ther victimizing the victims.\xe2\x80\x9d The OIG inves-\ndemand a larger civil monetary penalty from             tigated the methodology that Enforcement\nBofA and enhanced the prospect for a Fair               used to arrive at the original $33 million figure\nFund distribution to injured investors.                 and found that members of the first BofA in-\n                                                        vestigative team relied substantially on case\n    A second issue the Court identified in re-          precedent in arriving at the $33 million civil\njecting the first proposed settlement was that          penalty figure that the Court rejected. Simi-\nthe SEC sought the standard \xe2\x80\x9cobey-the-law\xe2\x80\x9d              larly, the Division\xe2\x80\x99s own Enforcement Manual\ninjunction, pursuant to which a defendant nei-          provided, \xe2\x80\x9cIf the Division agrees to make a\nther admits nor denies the SEC\xe2\x80\x99s allegations of         specific enforcement recommendation to the\nwrongdoing. The Court found the SEC\xe2\x80\x99s                   Commission, the staff should consider the set-\n\xe2\x80\x9cobey-the-law\xe2\x80\x9d injunction ineffective because           tlement terms of other similar cases to identify\nBofA maintained that it violated no federal             prior precedent involving similar alleged mis-\nsecurities laws by issuing the joint proxy              conduct.\xe2\x80\x9d In contrast, the OIG found that the\nstatement with Merrill. Because the company             second Enforcement team was not as con-\nbelieved it engaged in lawful conduct the first         strained by precedent, and used leverage\ntime, according to Judge Rakoff, the Court              provided by adding the fourth quarter losses\nwould be unable to hold BofA in contempt for            action and the Court\xe2\x80\x99s rejection of the first\nengaging in similar conduct in the future.              proposed settlement to reach a substantially\nThe OIG investigation found that \xe2\x80\x9cobey-the-             higher penalty figure of $150 million.\nlaw\xe2\x80\x9d injunctions, in which a defendant neither\nadmits nor denies wrongdoing, were often                    The OIG investigation also found that at\nsought by Enforcement for settled actions in            the time that the SEC began investigating is-\nfederal court.                                          sues related to the merger between BofA and\n                                                        Merrill, several other law enforcement agen-\n    The second Enforcement team worked                  cies were conducting related investigations.\nwith CF to craft remedial measures that would           These law enforcement agencies included the\nprovide a level of prophylactic relief against          U.S. Attorney\xe2\x80\x99s Offices for the Southern Dis-\n\n                                                   62\n\x0ctrict of New York and the Western District of           information with the NYAG. The NYAG\nNorth Carolina, the NYAG and SIGTARP.                   stated that the \xe2\x80\x9coffice requested copies of cer-\n                                                        tain investigative materials from the SEC,\xe2\x80\x9d but\n    The U.S. Attorney\xe2\x80\x99s Offices and the SEC             \xe2\x80\x9cdid not receive investigative materials from\nmade significant efforts to coordinate their            the SEC in this case.\xe2\x80\x9d\ninvestigations. Attempts between the SEC\nand the NYAG to coordinate the BofA investi-                 The OIG\xe2\x80\x99s investigation also found that\ngation were less successful. In contrast to the         SIGTARP was closely aligned with the NYAG\ncollaborative relationship between the SEC              and, therefore, was limited in the information\nand the U.S. Attorney\xe2\x80\x99s Office for the South-           it could share with the SEC. Further, the\nern District of New York, the OIG investiga-            OIG\xe2\x80\x99s investigation found that concerns over\ntion found that there has historically been ten-        SIGTARP sharing SEC investigative findings\nsion in the relationship between the SEC and            with the NYAG also kept the SEC from coor-\nthe NYAG.                                               dinating more fully with SIGTARP.\n\n     Prior to investigating the merger between              In or around January 2010, the\nMerrill and BofA, the SEC and the NYAG                  Enforcement Director and the NYRO Direc-\nhad been coordinating an investigation involv-          tor communicated with the NYAG about a\ning Merrill. However, SEC lawyers expressed             potential global settlement in which the SEC\nthe view that, although the NYAG provided               and the NYAG would jointly announce a set-\nsome cooperation with the SEC during the                tlement with BofA. However, according to an\nBofA investigation, the NYAG failed to coop-            SEC trial attorney, the NYAG rejected the\nerate fully. According to SEC attorneys, the            idea of a global settlement largely because the\nNYAG refused to share information and to                SEC\xe2\x80\x99s settlement did not include a charge\nprovide certain witness transcripts requested           against individuals.\nby the SEC prior to the SEC\xe2\x80\x99s first and second\nproposed settlements. The NYAG explained                     On February 4, 2010, the SEC and BofA\nwhy certain transcripts were not provided to            submitted a revised proposed settlement,\nthe SEC in connection with the BofA investi-            which the Court ultimately approved on Feb-\ngation, noting that they were \xe2\x80\x9cconcerned                ruary 22, 2010. The second settlement in-\nabout the impact partial disclosure could have          cluded a civil monetary penalty of $150 mil-\non [the NYAG] litigation .!.!. [as well as] on          lion, specific remedial undertakings that BofA\n[its] ongoing investigations of other individu-         was required to maintain for three years, and\nals.\xe2\x80\x9d                                                   a Fair Fund distribution to harmed \xe2\x80\x9clegacy\xe2\x80\x9d\n                                                        BofA shareholders. The SEC\xe2\x80\x99s settlement did\n    The NYAG\xe2\x80\x99s refusal to produce witness               not include any charges against individuals.\ntranscripts to the SEC meant that the SEC did           On February 4, 2010, the NYAG and SIG-\nnot obtain testimony for certain witnesses.             TARP also announced that the NYAG had\nBecause the Court had limited the number of             filed charges against BofA and two of its ex-\ndepositions the SEC could take, the SEC                 ecutives \xe2\x80\x9cfor violations of the Martin Act [a\ncould not always remedy the NYAG\xe2\x80\x99s refusal              New York financial fraud statute], the Execu-\nto produce transcripts by deposing the same             tive Law and common law .!.!. [following] a\nwitnesses. Consequently, in making its charg-           year-long investigation.\xe2\x80\x9d\ning decisions, there were certain witnesses\nwhose testimony the SEC was not able to ob-                 The SEC attorneys involved in the investi-\ntain, requiring the staff to rely instead on at-        gation asserted that even if the NYAG had\ntorney proffers that were considered \xe2\x80\x9cnot as            cooperated fully and produced all of the re-\ngood as a transcript.\xe2\x80\x9d There also were con-             quested transcripts, the SEC still would not\ncerns expressed about the SEC not sharing               have charged individuals at BofA. The SEC\n\n                                                   63\n\x0cattorneys expressed the view that they were                  Because the OIG\xe2\x80\x99s report of investigation\nable to ascertain what evidence the NYAG                 was issued just prior to the end of the semian-\nhad developed and did not believe the NYAG               nual reporting period, no action had yet been\nwas in possession of facts that would have led           taken by management with respect to the\nthe SEC to charge individuals. However, the              OIG\xe2\x80\x99s recommendations.\nOIG found that greater coordination and col-\nlaboration among law enforcement agencies\nwould have more efficiently utilized govern-             Failure to Maintain Active Bar\nmental resources and sped up the investigation           Membership, Lack of Candor, Conflicts\nby reducing duplication of witness interviews            of Interest, Improper Use of Non-\nand other investigative efforts.                         Public Information, and Abuse of Full-\n                                                         Time Telework Arrangement at\n                                                         Headquarters (Report No. OIG-520)\n  Recommendations in the Report of\n  Investigation                                              On August 4, 2009, the OIG opened an\n                                                         investigation based on a complaint alleging\n     The OIG did not find that any SEC em-\n                                                         that an SEC Headquarters attorney had been\nployee engaged in improper conduct during\n                                                         suspended from the practice of law, but con-\nthe BofA investigation and two proposed set-\n                                                         tinued to work as an SEC attorney. After the\ntlements. The OIG, however, made recom-\n                                                         OIG commenced its investigation into the at-\nmendations for improvements in two areas.\n                                                         torney\xe2\x80\x99s alleged failure to maintain active bar\nFirst, with respect to the WKSI waiver proc-\n                                                         membership, the OIG uncovered evidence\ness, the OIG recommended that CF: (1) cre-\n                                                         showing that the attorney was engaged in nu-\nate clear criteria for making waiver determi-\n                                                         merous outside activities using his SEC com-\nnations; (2) disseminate the guidance both in-\n                                                         puter, often during work hours, and expanded\nternally and externally; and (3) in cases where\n                                                         the scope of its investigation to include these\nthe waiver decision departs from the stated\n                                                         additional issues.\ncriteria, articulate in a written decision or or-\nder the rationale for the departure.\n                                                              During the course of its investigation, the\n                                                         OIG obtained and reviewed voluminous\n    Second, to address coordination issues\n                                                         documents related to this matter, including:\nidentified in the OIG\xe2\x80\x99s investigation, the OIG\n                                                         (1) e-mail records; (2) official personnel files;\nrecommended Enforcement: (1) continue the\n                                                         (3) time and attendance records;\nefforts undertaken by the NYRO Regional\n                                                         (4) ethics filings; (5) State bar information; and\nDirector to increase cooperation and coordi-\n                                                         (6) U.S. Department of State records. The\nnation among law enforcement agencies; (2) as\n                                                         OIG also conducted testimonies or interviews\npart of these efforts, review the level of coor-\n                                                         of 11 individuals, including the subject of the\ndination and cooperation on current\n                                                         investigation.\ninvestigations and assess where improved co-\nordination would conserve government re-\n                                                             The OIG investigation revealed that the\nsources; (3) in the early planning stages of\n                                                         attorney had not been a member in good\ninvestigations, assess whether other law\n                                                         standing of any state bar since 2006, when he\nenforcement agencies are already participating\n                                                         was suspended from one bar for failure to pay\nin, or should be made aware of, the subject\n                                                         his bar license fees and complete his continu-\ninvestigation; and (4) encourage staff, where\n                                                         ing legal education (CLE) credits. We learned\nappropriate, to establish and maintain effec-\n                                                         that the attorney had previously been sus-\ntive communication with those who are assist-\n                                                         pended in 2005 from the only other bar of\ning in investigations and to inform supervisory\n                                                         which he was a member, also for failing to pay\npersonnel when they are not receiving coop-\n                                                         bar license fees and to complete the required\neration.\n                                                         CLE credits. Therefore, we found that the\n\n                                                    64\n\x0cattorney did not meet the basic condition of            his core business hours and using SEC equip-\nhis employment at the SEC, i.e., that he be an          ment.\nactive member of a state bar.\n                                                            The evidence obtained by the OIG also\n    The OIG investigation found that in addi-           showed that the attorney transmitted non-\ntion to not being an active member of a state           public SEC information from his SEC e-mail\nbar, as required for his SEC job, the attorney          account to his personal e-mail account and\nengaged in many other forms of misconduct.              back to his SEC account on numerous occa-\nSpecifically, related to his lack of a bar mem-         sions, in violation of SEC rules. In addition,\nbership, the attorney misrepresented his bar            the investigation revealed that the attorney\nstatus to management officials when ques-               was approved for a full-time telework ar-\ntioned about it, lacked candor about not hav-           rangement, but that the attorney was some-\ning knowledge of his bar suspension, and en-            times unavailable or difficult to reach during\ngaged in the outside practice of law, using his         the attorney\xe2\x80\x99s normal business hours. Moreo-\nSEC computer, while suspended from the                  ver, we established that the attorney was away\npractice of law.                                        from his telework station during core business\n                                                        hours without requesting or using leave, as\n    The OIG investigation further revealed              required. The evidence also established that\nthat the attorney may have violated a federal           the attorney had a history of poor communi-\ncriminal conflict-of-interest statute, 18 U.S.C.        cation with his supervisors. Moreover, we\n\xc2\xa7 205, when he composed documents e-mailed              found that throughout his testimony before\nfrom his SEC computer, which were used by a             the OIG, the attorney lacked candor regard-\nforeign national to assist with her U.S. Visa           ing nearly every subject about which we ques-\napplication. In addition, the OIG found that            tioned him.\nthe attorney took SEC equipment outside of                  Because of the breadth and severity of his\nthe U.S. without obtaining permission to do             misconduct, the OIG planned to refer this\nso, conducted work on non-public matters in             matter to the appropriate U.S. Attorney\xe2\x80\x99s\nan unapproved, unsecure location outside of             Office for a potential violation of 18 U.S.C. \xc2\xa7\nthe U.S. in violation of SEC rules, and lacked          205 and practicing law without a license. In\ncandor regarding these matters in his testi-            addition, we planned to refer this matter to\nmony before the OIG.                                    the applicable State Bars.\n\n     Moreover, our investigation found that the             The OIG issued its report of investigation\nattorney gave advice, and possibly sensitive,           to management on September 1, 2010, rec-\nnon-public information, about SEC filings to            ommending disciplinary action against the\nhis friend, who was outside counsel for public          attorney, up to and including removal. The\ncompanies filing with the SEC, and poten-               OIG also recommended that management\ntially received favors in return, including a           implement a previous OIG recommendation\nround-trip flight. The attorney also served on          that SEC attorneys be required to certify an-\nthe board of directors of two companies that            nually that they are active members in good\nissued securities. In addition, the attorney            standing of a state bar. Finally, the OIG rec-\nrepresented a prospective professional athlete          ommended that management remind employ-\nas his attorney and agent. These outside ac-            ees that non-public SEC information should\ntivities gave rise to an appearance of impro-           never be sent to non-secure computers and\npriety and conflicts of interest. Further, the          that attorneys should not advise those outside\nOIG investigation revealed that the attorney            the SEC on particular filings, other than their\noften engaged in these outside activities during        specifically assigned work.\n\n\n\n\n                                                   65\n\x0c    Based on the OIG recommendations, in                 quest part-time schedules in three-month in-\nSeptember 2010, all SEC attorneys were noti-             crements. The OIG investigation determined\nfied that they were required to submit certifi-          that while these supervisors invoked the Fam-\ncations to OHR that they were members in                 ily and Medical Leave Act of 1993 (FMLA),\ngood standing of at least one bar. As of the             which allows for up to 12 administrative work\nend of the semiannual reporting period,                  weeks of LWOP in a 12-month period for cer-\nmanagement had not yet proposed discipli-                tain family and medical events, and entitles\nnary action against the attorney.                        employees to maintain their health benefits\n                                                         coverage, their use of LWOP extended far\n                                                         beyond that granted under the FMLA.\nImproper use of Leave Without Pay to\nReceive Full-Time Benefits While                             Moreover, the actual work schedules of\nWorking Part-Time Hours by OCIE                          the OCIE supervisors examined did not con-\nStaff (Report No. OIG-524)                               form to the limited strictures of the OCIE\n    On August 3, 2009, the OIG opened an                 policy. For example, two of the supervisors\ninvestigation after receiving an anonymous               examined in the investigation continued a re-\ncomplaint received through the OIG\xe2\x80\x99s com-                duced work schedule far beyond the one-year\nplaint Hotline that alleged that certain SEC             OCIE policy limitation. In addition, the\nOCIE supervisors were working a part-time                OCIE policy appeared to require a reduction\nschedule by regularly using leave without pay            in benefits and leave, yet the OCIE supervi-\n(LWOP) and identifying themselves in the                 sors we investigated did not have their benefits\ncomputerized payroll system as full-time em-             or leave reduced. The OIG investigation con-\nployees in order to receive full-time benefits.          cluded that at least three OCIE supervisors\n                                                         received numerous additional benefits af-\n    After reviewing current payroll records of           forded full-time employees, when in fact they\nall OCIE employees in the particular supervi-            were working part-time schedules. These ad-\nsory role identified in the anonymous com-               ditional benefits related to: (1) sick and annual\nplaint, the OIG began to investigate those su-           leave accrued; (2) health insurance premiums\npervisors who were regularly using LWOP.                 paid; (3) holiday pay; (4) retirement annuity\nThe OIG conducted on-the-record testimony                and eligibility; (5) life insurance eligibility; and\nand interviews of the subjects and an OCIE               (6) Thrift Savings Plan contributions.\nmanagement official, and reviewed the payroll\ndata for each of the subjects from 2005 to                    Overall, the OIG investigation found that\n2010. The OIG determined that each of                    OCIE\xe2\x80\x99s policy was inconsistent with federal\nthese supervisors had been authorized to work            and agency requirements. Specifically, while\nreduced hours after their return from mater-             the U.S. Office of Personnel Management\nnity leave, yet maintained their full-time status        (OPM) guidance on LWOP allows managers\nand benefits.                                            to grant LWOP at their discretion, allowing\n                                                         regular use of LWOP to create a de facto part-\n    The investigation revealed that OCIE had             time schedule and not reducing benefits con-\ndeveloped and implemented a policy in May                flicts with OPM regulations or guidance.\n2007 for maternity leave and requests to work            OPM requires a reduction in benefits for part-\na part-time schedule after returning from ma-            time employment and extended use of LWOP.\nternity leave. Specifically, OCIE allowed                In addition, the OCIE policy, which was not\nHeadquarters employees returning from ma-                extended to employees beyond OCIE Head-\nternity leave to take an additional six months           quarters, conflicted with provisions of the\nof leave before returning to work; then, after           SEC\xe2\x80\x99s Collective Bargaining Agreement\nreturning to work, these employees could re-             (CBA), as the CBA recognizes that employees\n                                                         who choose to work part-time schedules are\n\n                                                    66\n\x0cnot entitled to full-time status or benefits. In                  employees be required to sign and\naddition, the CBA did not extend benefits                         date OHR\xe2\x80\x99s \xe2\x80\x9cBenefits Agreement for\ngranted beyond those outlined in the FMLA.                        Changing Work Schedules from Full-\n                                                                  Time to Part-Time\xe2\x80\x9d to show they\n    In our report of investigation, we made                       have been informed of the reduced\nthe following recommendations:                                    leave and benefits; and\n\n    (1)   OCIE, and any other office with a                 (3)   The Executive Director, the Associ-\n          similar policy, should disband the                      ate Executive Director for OHR and\n          policy (i.e., not allow employees to                    the Director of OCIE should care-\n          use LWOP regularly for extended                         fully examine the report of investiga-\n          periods of time to create a de facto                    tion to identify improvements\n          part-time schedule without reducing                     needed in the manner in which the\n          benefits and leave accruals) and re-                    SEC manages and approves reduced\n          quire every SEC office to follow the                    work hours.\n          CBA requirements for part-time em-\n          ployment;                                          The OIG issued its report of investigation\n                                                         to management on July 23, 2010. As of the\n    (2)   OHR should conduct a comprehen-                end of the semiannual reporting period, no\n          sive audit of all Commission em-               action had yet been taken by management\n          ployees to determine whether other             with respect to the OIG\xe2\x80\x99s recommendations.\n          employees regularly use LWOP to\n          create a part-time or reduced work\n          schedule, but have not had their               Misrepresentation of Identity and Lack\n          benefits properly reduced, and pro-            of Active Bar Membership (Report No.\n          vide the audit results to the OIG and          OIG-541)\n          Executive Director. For the employ-\n          ees identified in the report and oth-              On August 13, 2010, we opened an inves-\n          ers working less than a full-time              tigation as a result of an August 10, 2010 e-\n          schedule who have not had their                mail complaint, alleging that a Regional\n          benefits and leave properly reduced,           Office Staff Attorney had harassed the com-\n          OHR should recalculate the benefits            plainant\xe2\x80\x99s girlfriend on the internet. The\n          and leave and attempt to recoup                complainant specifically alleged that, on two\n          those improperly given. Specifically,          occasions during the last two years, the Staff\n          OHR should recalculate the follow-             Attorney had misrepresented himself in online\n          ing for each of these employees:               chat rooms. The complainant had deter-\n          (1) sick and annual leave accrued;             mined the Staff Attorney\xe2\x80\x99s actual identity by\n          (2) health insurance premiums paid;            conducting an online search.\n          (3) holiday pay given when they\n          would have normally taken LWOP;                    In addition, during the investigation, the\n          (4) retirement annuity and eligibility;        OIG learned that the Staff Attorney had al-\n          (5) life insurance eligibility; and            lowed his bar memberships to lapse on several\n          (6) TSP contributions. The OIG                 occasions and for significant periods of time.\n          also recommended that those em-                The OIG discovered that the Staff Attorney is\n          ployees working a reduced schedule             not currently an active member of a bar and\n          be promptly notified of reduced                has not been an active member of a bar since\n          leave and benefits to be effective             2008. The OIG found that while the Staff\n          immediately if remaining on a re-              Attorney\xe2\x80\x99s bar memberships have been sus-\n          duced work schedule, and that these            pended, he signed and filed a complaint on\n\n\n                                                    67\n\x0cbehalf of the Commission in federal district            OHR require that SEC attorneys certify an-\ncourt. Additionally, the OIG found that the             nually that they are active members of a state\nStaff Attorney applied in the past year for sev-        bar in good standing. As mentioned above,\neral positions within the SEC and certified on          subsequent to the issuance of this report, all\neach of those applications that he was an ac-           SEC attorneys were notified that they were\ntive member of a bar.                                   required to submit certifications to OHR that\n                                                        they are currently members in good standing\n    The OIG interviewed the complainant                 of at least one bar.\nand took sworn on-the-record testimony of\nthe Staff Attorney. The OIG also interviewed\nseveral representatives of state bar organiza-          Unprofessional Conduct by Supervisor\ntions, and other SEC staff. In addition, the            While Conducting Examination (Report\nOIG reviewed records provided by the bar                No. OIG-530)\norganizations. Finally, the OIG reviewed the\nStaff Attorney\xe2\x80\x99s e-mails, his Official Personnel            On January 7, 2010, the OIG opened an\nFolder, and a background questionnaire                  investigation as a result of information re-\nprovided by the Staff Attorney.                         ceived from the OIG\xe2\x80\x99s complaint Hotline.\n                                                        The complaint alleged, among other things,\n    The OIG found that the allegations that             that an Examinations Branch Chief in an\nthe Staff Attorney had misrepresented his               SEC Regional Office, during the course of an\nidentity online were generally substantiated.           SEC examination, had entered a firm and\nThe Staff Attorney acknowledged using an e-             proceeded to examine documents without\nmail address that could be associated with the          properly identifying himself or showing his\nSEC on the Internet, which led to the com-              SEC identification on two separate occasions.\nplaint being filed with the OIG.                        The complaint also alleged that after these\n                                                        incidents occurred, the Branch Chief had\n    Further, the OIG found that the Staff At-           harassed the complainant, an examiner in the\ntorney had not maintained active bar mem-               Regional Office by, among other things, set-\nbership during various periods of his em-               ting unreasonable deadlines that reflected a\nployment as an SEC attorney, as he was re-              change in policy.\nquired to do, and had not been an active bar\nmember since 2008. The OIG also found                       In conducting this investigation, the OIG\nevidence that the Staff Attorney signed a               took sworn, on-the-record testimony from or\ncomplaint in federal district court misrepre-           interviewed nine individuals, including the\nsenting himself as an active member of a bar,           Branch Chief, the complaintant and the\nduring which time he was suspended from the             owner of the firm being examined. The OIG\npractice of law. In addition, on three separate         also reviewed various pertinent documents,\noccasions when applying for various promo-              including the Regional Office\xe2\x80\x99s examination\ntions, the Staff Attorney had falsely certified         procedures.\nthat he was an active member of a state bar.\n                                                            The OIG investigation found evidence\n    The OIG issued its report of investigation          that the Branch Chief engaged in unprofes-\nto management on September 8, 2010. In its              sional behavior by failing to identify himself\nreport, the OIG referred this matter to                 properly or to produce his SEC identification\nmanagement for disciplinary action, up to and           to employees of the firm on two separate oc-\nincluding dismissal. As of the end of the               casions while conducting an examination of\nsemiannual reporting period, no action had              the firm. The evidence showed that during\nyet been taken by management with respect to            the first incident, contrary to required prac-\nthe OIG\xe2\x80\x99s recommendation. The OIG also                  tice, the Branch Chief entered the firm with-\nrecommended, as it has done in the past, that           out identifying himself or showing identifica-\n\n                                                   68\n\x0ction and went to the back office where the                Regional Office staff members who worked\nfirm\xe2\x80\x99s client documents were located. The                 on the enforcement action between 2004 and\nevidence showed that a second, more serious               2009.\nincident occurred when the Branch Chief\nagain entered the examination site without                    The OIG issued its report of investigation\nintroducing himself or producing identifica-              to management on June 8, 2010, finding no\ntion. We found that during this second inci-              evidence that the Regional Office\ndent, the Branch Chief responded unprofes-                Enforcement investigation into securities viola-\nsionally to requests that he provide his identi-          tions and other wrongdoing by the officers of\nfication. The investigation, however, found               the company was negligent, despite a pro-\ninsufficient evidence that the Branch Chief               nounced delay in obtaining testimony and\nhad harassed the complainant after the identi-            concluding the investigation. The OIG also\nfication incidents.                                       did not find evidence that the decision not to\n                                                          pursue fraud charges was unsupportable in\n    The OIG issued its report of investigation            light of the litigation risks expressed.\nto management on June 27, 2010, and rec-\nommended appropriate disciplinary action                       Further, the OIG concluded that the pen-\nagainst the Branch Chief. Subsequent to issu-             alties assessed for the ill-gotten gains derived\ning the report of investigation, the OIG                  from the company\xe2\x80\x99s officers\xe2\x80\x99 fraudulent activi-\nlearned that the Branch Chief had resigned                ties were supported by an analysis obtained\nfrom the Commission.                                      from the SEC\xe2\x80\x99s Office of Economic Analysis\n                                                          (now part of the Division of Risk, Strategy,\n                                                          and Financial Innovation). However, the OIG\nAllegation of Failure of a Regional                       investigation did find that certain delays in the\nOffice to Conduct an Adequate                             investigation were excessive. The OIG further\nInvestigation (Report No. OIG-529)                        determined that some potential evidence may\n                                                          have been unexamined, likely as a result of\n     On May 22, 2008, the OIG opened an\n                                                          poor communication among the Regional\ninvestigation into an anonymous complaint\n                                                          Office staff. Finally, while the OIG found that\nalleging investigative misconduct by staff of\n                                                          there was considerable turnover in the staffing\nan SEC Regional Office. Specifically, the\n                                                          of the investigation, the OIG did not uncover\ncomplaint alleged that Regional Office\n                                                          evidence substantiating the claim that staff\nEnforcement officials failed to vigorously and\n                                                          members were improperly removed from the\ndiligently investigate the officers of a publicly-\n                                                          investigation in order to negate staff efforts to\ntraded corporation for securities fraud. The\n                                                          conduct a more aggressive investigation.\ncomplaint further alleged that the\nEnforcement investigation was unduly de-\nlayed, relevant evidence was not examined\n                                                          Allegations of Failure to Conduct\nand management improperly removed staff                   Adequate Enforcement Investigation\nfrom the investigation.                                   and Misconduct by Enforcement\n                                                          Attorneys (Report No. OIG-531)\n    In our investigation, we reviewed numer-\nous relevant documents relating to the                        The OIG opened an investigation on\nEnforcement investigation, and nearly 1,000               January 19, 2010, into allegations that\ne-mails, and related attachments, of the vari-            Enforcement failed to properly and vigorously\nous staff attorneys assigned to the investiga-            enforce the federal securities laws in the\ntion, as well as of staff from other divisions            course of an investigation of accounting rule\nand offices who were involved in the matter.              and insider trading violations by a publicly-\nFurther, we took the sworn testimony of five              traded corporation. Specifically, the com-\n\n\n                                                     69\n\x0cplainant alleged that Enforcement had im-                     In addition, the OIG found that the evi-\nproperly dropped an accounting issue that                dence did not substantiate the allegation that\narose during its investigation and covered this          the SEC Commissioners may not have had all\nup; the SEC improperly failed to pursue valid            the facts before they voted to approve the set-\ninsider trading claims against corporate insid-          tlements. The OIG found that Enforcement\ners; SEC Commissioners may not have had all              provided significant written information about\nthe facts before they voted to approve settle-           the proposed settlements to the Commission-\nments in this matter; and the complainant                ers, and that the Commissioners discussed the\nshould have been paid a bounty. The com-                 pertinent issues prior to voting to approve the\nplainant also alleged specific acts of miscon-           settlements. The OIG also found that the\nduct by Enforcement staff members during                 complainant was not entitled to a bounty un-\nthe course of the investigation.                         der the law that was in effect at the time be-\n                                                         cause no insider trading penalty was assessed\n    During the investigation, the OIG took the           or recovered in the matter\nsworn, on-the-record testimony of the com-\nplainant, and of an Enforcement Assistant                    Further, the OIG investigation found no\nDirector who had been in charge of the                   evidence to support the complainant\xe2\x80\x99s allega-\nEnforcement investigation. The OIG also re-              tions that SEC staff members may have en-\nviewed numerous relevant documents, includ-              gaged in various types of inappropriate or un-\ning hundreds of pages of correspondence and              ethical conduct, such as a quid pro quo with the\nsupporting materials sent by the complainant,            corporate defendant, obstruction of justice,\nincluding his complaints to the OIG and a                mail and wire fraud, honest services fraud,\nseries of complaints he had filed with                   and bestowing favors in return for future em-\nEnforcement beginning in 2002.!                          ployment. The OIG investigation also found\n                                                         insufficient evidence to support the complain-\n     The OIG issued its report of investigation          ant\xe2\x80\x99s allegation that the Enforcement Assistant\nto management on August 11, 2010. In this                Director was belligerent towards him during a\nreport, the OIG found that the evidence did              telephone conversation.\nnot substantiate the allegations that\nEnforcement improperly dropped an account-\ning issue and covered this up, or that the SEC           Allegation of Unauthorized Disclosure\nimproperly failed to pursue valid insider trad-          of Non-Public Information (Report No.\ning claims. To the contrary, the OIG found               OIG-525)\nthat the SEC\xe2\x80\x99s case against the issuer based\n                                                              The OIG opened this investigation on Oc-\nupon fraudulent accounting resulted in a sig-\n                                                         tober 6, 2009, after receiving a letter from a\nnificant settlement, which was used to estab-\n                                                         trial attorney in the Public Integrity Section of\nlish a Fair Fund to provide restitution to inves-\n                                                         the DOJ. The attorney requested that the\ntors. The OIG further found that Enforce-\n                                                         OIG provide assistance to a Special Agent of\nment\xe2\x80\x99s recommendations to the Commission\n                                                         the FBI in connection with a criminal investi-\non the insider trading claims were based upon\n                                                         gation being conducted by the Public Integrity\nits stated attempt to balance the litigation\n                                                         Section.\nrisks, the totality of the circumstances, and\navailable SEC resources. We did not find evi-\n                                                             The criminal investigation involved an al-\ndence that Enforcement\xe2\x80\x99s recommendations,\n                                                         leged leak by individuals who worked for the\nor the Commission\xe2\x80\x99s decisions based upon\n                                                         SEC at the time of the events in question re-\nthose recommendations, were an abuse of\n                                                         garding a recently-proposed rule. The DOJ\nauthority or per se improper, as the complain-\n                                                         was investigating whether SEC staff may have\nant had claimed.\n                                                         disclosed non-public information regarding\n                                                         the rule to certain individuals outside the\n\n                                                    70\n\x0cCommission. Specifically, the non-public                    Due to the potential criminal nature of the\ninformation alleged to have been leaked                allegations, the OIG contacted the DOJ Pub-\nrelated to how the Chairman and Commis-                lic Integrity Section. The OIG worked closely\nsioners planned to vote on the rule.                   with DOJ, as well as the FBI, in the course of\n                                                       investigating this matter. After being ques-\n    DOJ had requested that the OIG obtain e-           tioned by the FBI, the source of the allegation\nmails for certain SEC staff members. Addi-             recanted his story.\ntionally, DOJ requested that the OIG search\nthose e-mails for any e-mail messages sent or               On September 15, 2010, the OIG issued a\nreceived from certain individuals outside the          report describing the results of its investigation\nCommission, and provide that information to            in this matter. Based upon the work per-\nthe FBI. The OIG compiled e-mails related              formed in conjunction with DOJ and the FBI,\nto the search terms identified by the DOJ, and         the OIG did not find evidence that any SEC\nprovided the FBI with a binder of all related          official was willing to remove SEC files for pay.\ne-mails. The OIG also provided other\nassistance at the FBI\xe2\x80\x99s request, and the OIG\nand the FBI conducted a joint interview of a           Inquiries Conducted and Memorandum\nformer SEC staff member. Additionally, OIG             Reports Issued\nstaff attended a joint proffer of another indi-\nvidual.                                                     During this semiannual reporting period,\n                                                       the OIG completed a total of 23 inquiries into\n    After reviewing the e-mails obtained dur-          complaints received by the OIG. Of these\ning the investigation, the OIG did not find any        inquiries, five were converted to, or included\nevidence that SEC staff had provided any               in, investigations, six resulted in the issuance\nnon-public information regarding the rule at           of memorandum reports recommending dis-\nissue to anyone outside the Commission. Fur-           ciplinary action, and two made other types of\nther, the FBI informed the OIG that the inves-         recommendations. In addition, the OIG is-\ntigation into certain former SEC staff did not         sued a memorandum report recommending\nproduce any evidence that they leaked any              disciplinary action that arose out of a review\nnon-public information. As a result, this in-          completed by the OIG Office of Audits dur-\nvestigation was closed on July 6, 2010.                ing the reporting period. Several of the most\n                                                       significant of the inquiries completed and\n                                                       memorandum reports issued during the pe-\nComplaint Concerning Obstruction of                    riod are described below.\nJustice (Report No. OIG-513)\n\n    The OIG opened this investigation on                 Misuse of Computer Resources and\nMarch 10, 2009, after receiving information              Official Time (PIs: 10-30, 10-31,\nthat an SEC employee may have offered to                 10-32, and 10-59)\nobstruct an SEC investigation. The OIG took\nthe sworn, on-the-record testimony of an in-               During the semiannual reporting period,\ndividual who stated that he had learned of an          the OIT provided the OIG with a report of\nSEC employee who allegedly had destroyed               employees or contractors who had received a\nSEC investigative documents in the past, and           substantial number of access request denials\ncould do so again in return for compensation.          for websites classified as pornography by the\nThe OIG also obtained and reviewed relevant            SEC\xe2\x80\x99s Internet filter. In reviewing the\ndocuments, including e-mails, personnel files,         information provided by OIT, the OIG\ntime and attendance records, and Commission            learned that three employees and one contrac-\ndatabase records from the SEC and relevant             tor who had received a large number of access\noutside entities.                                      request denials had also successfully accessed\n\n                                                  71\n\x0csexually explicit or sexually suggestive websites        filter as pornography during a one-month pe-\nfrom their government-assigned computers.                riod. Many of the access denials occurred\n                                                         during normal Commission work hours. The\n    The OIG conducted inquiries into the                 OIG inquiry further found that the employee\nInternet activities of the three employees, and          successfully accessed sexually explicit or sexu-\nissued memorandum reports to management                  ally suggestive photographs, and that many of\nin all three matters on April 30, 2010. In each          these photographs were accessed during nor-\nmatter, the OIG concluded that the em-                   mal Commission work hours. Based on the\nployee\xe2\x80\x99s inappropriate use of the Internet vio-          OIG\xe2\x80\x99s referral, management proposed a 30-\nlated Commission policy and rules, as well as            day suspension of the employee.\nthe Government-wide Standards of Ethical\nConduct. The OIG referred all three em-                      The OIG also conducted an inquiry into\nployees to management for disciplinary action,           the computer usage of the contractor who\nup to and including removal.                             had received a substantial number of access\n                                                         denials classified as pornography by the\n    In one matter (PI 10-30), the OIG found              Commission\xe2\x80\x99s Internet filter. In this matter (PI\nthat an SK-7 Headquarters employee received              10-59), a Headquarters contract employee\n295 access request denials for websites classi-          had received 1,097 access request denials for\nfied by the Commission\xe2\x80\x99s Internet filter as              websites classified by the Commission\xe2\x80\x99s Inter-\npornography during a seven-week period.                  net filter as pornography during a one-month\nSome of these access denials occurred during             period. The OIG inquiry found that the con-\nnormal Commission work hours. The OIG                    tract employee successfully accessed sexually\ninquiry further found that the employee suc-             explicit or sexually suggestive photographs\ncessfully accessed sexually explicit photo-              and had performed an inappropriate Internet\ngraphs, sometimes doing so during normal                 search. On July 9, 2010, the OIG issued a\nCommission work hours. Based on the OIG\xe2\x80\x99s                memorandum report to management, rec-\nreferral, management proposed a 30-day sus-              ommending disciplinary action. Based on the\npension of the employee.                                 OIG\xe2\x80\x99s referral, the contract employee was re-\n                                                         moved from the SEC contract.\n    In a second matter (PI 10-31), the OIG\nfound that an SK-13 Headquarters employee\nreceived over 10,000 access request denials for            Allegations of Preferential Treatment,\nwebsites classified by the Commission\xe2\x80\x99s Inter-             Improper Gifts, and Improper\nnet filter as pornography during a five-and-a-             Solicitation of Charitable Donations\nhalf-week period. Many of the access denials               (PI 09-103)\nwere received during normal Commission\n                                                             In July 2009, the Office of Inspector Gen-\nwork hours. The OIG inquiry further found\n                                                         eral (OIG) received two anonymous com-\nthat the employee successfully accessed sexu-\n                                                         plaints about a then-Regional Office Branch\nally explicit photographs on numerous in-\n                                                         Chief. The first complaint alleged that a Re-\nstances, and that many of these photographs\n                                                         gional Office Staff Attorney had given ex-\nwere accessed during normal Commission\n                                                         travagant gifts to her Branch Chief. The\nwork hours. The employee resigned from the\n                                                         complaint further stated that these gifts were a\nSEC after the agency had proposed his re-\n                                                         factor in the Branch Chief \xe2\x80\x99s approval of the\nmoval based upon the OIG\xe2\x80\x99s referral.\n                                                         Staff Attorney\xe2\x80\x99s reduced work schedule and\n                                                         the Staff Attorney\xe2\x80\x99s receipt of several cash\n     In the third matter (PI 10-32), the OIG\n                                                         and time-off awards. The second complaint\nfound that an SK-9 Headquarters employee\n                                                         alleged that the Regional Office Branch Chief\nreceived 297 access request denials for web-\n                                                         had asked numerous people, many of whom\nsites classified by the Commission\xe2\x80\x99s Internet\n                                                         reported to her, for donations for various\n\n                                                    72\n\x0ccauses. In conducting this inquiry, the OIG             serve on the investment committee of a non-\ntook sworn, on-the-record testimony and con-            profit organization at the same time that he\nducted interviews of Regional Office staff              was responsible for overseeing reviews of cer-\nmembers and contacted the SEC\xe2\x80\x99s Ethics                  tain company filings. The OIG inquiry re-\nOffice. The OIG also reviewed payroll re-               viewed whether the supervisor\xe2\x80\x99s participation\ncords, official personnel files and e-mails.            on the aforementioned committee violated\n                                                        any criminal conflict-of-interest statutes, the\n     The OIG investigation revealed that the            government-wide standards of ethical con-\nBranch Chief had violated the federal ethics            duct, or Commission rules.\nrules by soliciting charitable contributions on\none occasion and accepting gifts from subor-                During its inquiry, the OIG conducted\ndinates on several other occasions. The OIG             interviews of the subject of the inquiry and\nalso found that the Staff Attorney had been             his supervisor and consulted with the SEC\nallowed to work an improper schedule by                 Ethics Counsel. The OIG also reviewed nu-\nregularly using leave without pay to create a de        merous relevant documents, including a list of\nfacto part-time or reduced schedule. Addition-          the registrants over which the subject supervi-\nally, the OIG found that the Staff Attorney             sor had responsibility, his Official Personnel\nhad inappropriately received full time benefits         Folder and his OGE Form 450 confidential\nwhile working a part-time schedule. The OIG             disclosure reports.\nconcluded in a recently-issued report of inves-\ntigation, OIG-524, that allowing SEC em-                    The OIG inquiry found that the supervi-\nployees to regularly use leave without pay to           sor\xe2\x80\x99s service as a member of the investment\ncreate a de facto part-time schedule without            committee, given his SEC position, created an\nreducing benefits and leave accruals is incon-          appearance of impropriety and a very real risk\nsistent with federal and agency requirements.           that he would violate 18 U.S.C. \xc2\xa7 208, al-\n                                                        though the OIG did not find an actual viola-\n     The OIG issued its memorandum report               tion of that statute. The OIG further found\nto management on September 27, 2010, and                that given the supervisor\xe2\x80\x99s access to a large\nrecommended that the Regional Office cease              amount of non-public information by virtue\nallowing the Staff Attorney to work her cur-            of his position at the SEC, there was an ap-\nrent, or similar, part-time schedule and receive        pearance that he might improperly use non-\nfull time benefits; and that OHR recalculate            public information to advise the non-profit\nthe amount of benefits and leave that the Staff         organization in violation of Commission rules\nAttorney should have received based on her              and government-wide ethics standards. In\npart-time schedule and attempt to recoup                particular, the evidence showed that the su-\nthose amounts improperly given. Because the             pervisor had strongly objected to a particular\nOIG\xe2\x80\x99s report of investigation was issued just           investment by the non-profit organization,\nprior to the end of the semiannual reporting            which could have led to the appearance that\nperiod, no action had yet been taken by                 he was using non-public information derived\nmanagement with respect to the OIG\xe2\x80\x99s rec-               from his Commission employment to assist the\nommendations.                                           non-profit organization.\n\n                                                            On June 29, 2010, we issued a memoran-\n  Appearance of Impropriety With                        dum report and referred this matter to the\n  Respect to Acts Affecting a Personal                  management for appropriate remedial action,\n  Financial Interest (PI 09-04)                         including requiring that the supervisor resign\n                                                        from his position as a member of the invest-\n    The OIG conducted an inquiry into a\n                                                        ment committee. Before management took\ncomplaint questioning whether it was appro-\npriate for an SEC Headquarters supervisor to\n                                                   73\n\x0cany action based on the OIG\xe2\x80\x99s referral, the                Enforcement Attorney Engaged in\nsupervisor resigned from his SEC position.                 Prohibited Political Activity (PI 10-54)\n\n                                                             This OIG inquiry was opened in response\n  Failure to Follow Internal Policy                      to an anonymous Hotline complaint, which\n  Regarding Separation of a                              alleged that an SEC Regional Office employee\n  Probationary Employee (PI 09-60)                       was running for political office and that this\n     The OIG conducted an inquiry into a                 employee, who had been receiving workers\ncomplaint alleging that the SEC improperly               compensation disability payments, \xe2\x80\x9cre-\nfailed to provide two-weeks notice prior to              main[ed] able bodied,\xe2\x80\x9d inferring that he\nterminating a former staff attorney who was              should not be claiming this disability.\nserving a probationary period. In its inquiry,\nthe OIG reviewed the applicable policies and                 The OIG investigation revealed that the\nprocedures, obtained pertinent e-mails and               subject Regional Office employee had submit-\ninterviewed OGC and OHR officials regard-                ted a disability claim to the Department of\ning these policies and procedures.                       Labor\xe2\x80\x99s, Federal Employees\xe2\x80\x99 Compensation\n                                                         Act workers\xe2\x80\x99 compensation program in 2001\n    The OIG\xe2\x80\x99s inquiry found that SECR 6-18,              and, thereafter, began receiving workers\xe2\x80\x99\n\xe2\x80\x9cUse and Administration of Disciplinary Ac-              compensation payments. The employee has\ntion Involving Attorneys and Personnel of the            remained on the roles as an SEC employee for\nExcepted Service,\xe2\x80\x9d provided that for employ-             the duration of this claimed disability. !\nees who are within a probationary period, \xe2\x80\x9c[t]\nwo weeks notice, as a minimum, will be given                 The OIG found that, during the period of\nunless otherwise directed by the Director of             his disability, the employee has been politically\nPersonnel.\xe2\x80\x9d The OIG found that there was                 active, including registering and actively cam-\nno specific requirement in the policy that the           paigning in a county election. The OIG\ndirection to provide the waiver be in writing,           noted that under the Hatch Act, 5 U.S.C. \xc2\xa7\xc2\xa7\nand the evidence showed that a waiver had                7321-7326, federal employees are expressly\nbeen provided verbally in the complainant\xe2\x80\x99s              prohibited from running as candidates for a\ncase. However, the OIG found that this                   partisan political office. The race at issue was,\nwaiver had not been granted by the \xe2\x80\x9cDirector             in fact, a partisan political election and, al-\nof Personnel,\xe2\x80\x9d or the equivalent position, as            though the employee was running as an inde-\nwas required by SECR 6-18, but rather had                pendent candidate, he identified himself as a\nbeen granted by a subordinate OHR official.              Democrat in his campaign platform material.\n\n    Accordingly, because the waiver had not                   After speaking with a representative of the\nbeen granted in accordance with SEC written,             SEC OHR, the employee withdrew his candi-\nalbeit internal, policy on July 15, 2010, we is-         dacy during the pendency of the OIG inquiry\nsued a memorandum report to management                   into this matter. Notwithstanding his with-\nconcerning this matter. In this report, we rec-          drawal from the race, the evidence clearly es-\nommended that OHR either follow the estab-               tablished that the employee had violated the\nlished procedures for the termination of pro-            Hatch Act by participating in a partisan politi-\nbationary employees, or modify those proce-              cal election. Thus, the OIG referred the mat-\ndures. In response to the OIG\xe2\x80\x99s recommenda-              ter to the U.S. Office of Special Counsel,\ntion, management informed the OIG that it                Hatch Act Unit, for further review of the vio-\nintended to follow the existing policy in all fu-        lation and appropriate disciplinary action.\nture cases.\n\n\n\n                                                    74\n\x0c  Complaints Regarding Waste and                           Allegation of Failure to Investigate\n  Abuse in Federal Contracts                               Complaints (PI 09-39)\n  (PI 09-110)\n                                                              The OIG received a complaint from a\n    During the semiannual reporting period,              member of the public, alleging that\nthe OIG reviewed several anonymous allega-               Enforcement failed to investigate securities law\ntions primarily involving a Headquarters su-             violations he had reported to the SEC in a\npervisor, including allegations that                     series of e-mails. The OIG found that this\ngovernment funds were being wasted by the                complainant had filed twelve separate com-\naward of unnecessary and expensive contracts             plaints with the SEC. The allegations in-\nto outside contractors. The allegations in-              cluded claims of insider trading, failures by an\ncluded specific claims that the supervisor, as           issuer to disclose material facts in its SEC fil-\nwell as another individual working under the             ings, and the failure of a federal government\nsupervisor, showed favoritism in the award of            official to file required disclosures of personal\ncertain contracts, and awarded contracts so              securities holdings.\nthat friends of these individuals who worked\nfor the contracting entities would have jobs.                As part of the inquiry, OIG staff obtained\n                                                         and reviewed copies of the underlying com-\n     During its inquiry, the OIG obtained and            plaints sent from the individual to the SEC,\nreviewed the supervisor\xe2\x80\x99s e-mails for a 23-              the SEC\xe2\x80\x99s responses to those complaints, and\nmonth period. Prior to the completion of the             relevant internal e-mails. We also interviewed\nOIG\xe2\x80\x99s inquiry, the supervisor was transferred            one former and three current Enforcement\nto a non-supervisory position and was no                 attorneys. Further, we reviewed relevant SEC\nlonger responsible for management of the                 databases that identify and track complaints\ncontracts at issue. Therefore, the OIG fo-               and investigations.\ncused its e-mail review on searching for evi-\ndence of misconduct on the part of the super-                 The OIG found that an Enforcement at-\nvisor. The OIG\xe2\x80\x99s review of the supervisor\xe2\x80\x99s e-           torney had reviewed the complaints submitted\nmails did not reveal an inappropriate relation-          by the complainant and concluded that, given\nship between the supervisor and any of the               the nature of the complaints, they would be\ncontractors, or any evidence of bribes, gratui-          more appropriately handled by the FBI (which\nties, or inappropriate favoritism towards a par-         the complainant indicated he had contacted),\nticular contractor.                                      rather than through the SEC\xe2\x80\x99s Enforcement\n                                                         powers. The evidence showed that the\n    However, the OIG\xe2\x80\x99s review disclosed issues           Enforcement attorney, acting pursuant to ex-\nregarding the management of contracts                    isting protocols for handling complaints, de-\nwithin the supervisor\xe2\x80\x99s former office, relating          termined that there was no basis to refer the\nto (a) concerns on the part of staff that a par-         complaint for further SEC analysis. We fur-\nticular, expensive contract was renewed de-              ther found that an additional de novo review of\nspite the availability of a less expensive alter-        these complaints was conducted after the\nnative, and (b) inadequate planning with re-             complainant sent e-mails to the current and\ngard to the definition of tasks and the level of         former SEC Chairmen and, as a result of that\nfunding required for contract projects. Be-              review, another set of Enforcement attorneys\ncause there is new management in the super-              also determined that the matter was not ap-\nvisor\xe2\x80\x99s former office, the OIG referred to the           propriate to refer for SEC investigation.\nnew office head the contract issues identified\nduring its inquiry. The OIG also referred the                 While the OIG\xe2\x80\x99s inquiry revealed insuffi-\ncontract issues identified in its review to its          cient evidence of misconduct by SEC staff,\nOffice of Audits for consideration in connec-            the OIG determined that the complaints ini-\ntion with future audit work.                             tially submitted to Enforcement would better\n                                                    75\n\x0chave been addressed in more detail. The OIG                    While the above facts alone were suspi-\nnoted that subsequent to the time these com-              cious, the OIG uncovered an e-mail that was\nplaints were received and processed, i.e., in or          sent before the issuance of the solicitation that\nabout March 2010, the SEC implemented a                   evidenced an improper pre-selection for the\ncompletely new system for the intake of all               project support contract. Specifically, an SEC\ntips, complaints and referrals, including those           contracting official sent an e-mail to another\nreceived by the Enforcement. Hence, the                   SEC employee that discussed the status of the\nOIG found that any deficiencies in Enforce-               procurement system, which clearly reflected\nment\xe2\x80\x99s previous complaint-handling system                 that a particular contractor who had been\nhad been addressed.                                       working at the SEC and therefore met the re-\n                                                          strictive condition of the solicitation, had been\n                                                          selected for the project support contract a\n  Improper Pre-Selection of                               week before the solicitation was issued and\n  Contractor                                              while the solicitation was still being prepared.\n                                                          This e-mail stated, in part, \xe2\x80\x9cIt may be best to\n    On September 30, 2010, the OIG issued a               delay this meeting [on the status of the new\nmemorandum report to management based                     procurement system] because we are hiring a\nupon evidence of the improper pre-selection               project manager (i.e., [the contractor who was\nof a contractor that was disclosed by the                 subsequently selected]) to assist with the ac-\nOIG\xe2\x80\x99s report entitled, Review of PRISM Auto-              quisition and implementation. . . . Right now\nmated Procurement System Support Contracts (Report        nothing is happening on the [automated pro-\nNo. 486).                                                 curement system] acquisition; I\xe2\x80\x99m trying to\n                                                          prepare the solicitation for the [Project\n     The OIG\xe2\x80\x99s report set forth evidence show-            Management] support.\xe2\x80\x9d\ning that a solicitation notice to vendors to pro-\ncure project support services for the imple-                  Based upon the clear evidence of pre-\nmentation of an automated procurement sys-                selection of a contractor for the automated\ntem included an extremely restrictive condi-              procurement system project management\ntion that vendors were required to meet in or-            support contract, the OIG referred the matter\nder to receive consideration for the contract             to management for appropriate disciplinary\naward. Specifically, the solicitation required            action for the senior level personnel who were\nthat the contractor\xe2\x80\x99s employees have a current            responsible for the improper pre-selection.\nSEC clearance, or had one within the last 30\ndays, thus excluding any contractors who did\nnot have employees possessing such clearance.             PENDING INVESTIGATIONS\nThe SEC Contracting Officer\xe2\x80\x99s letter to offer-\nors that accompanied the solicitation empha-              Complaint of Investigative Misconduct\nsized the restrictive clause and requested that           by Various Enforcement Attorneys\nofferors \xe2\x80\x9cplease seriously consider not propos-\ning if you have no one who qualified.\xe2\x80\x9d The                    The OIG is continuing its investigation of\nOIG found no justification in the contract file           a complaint received from counsel for a de-\nfor the decision to include the restrictive               fendant in an SEC enforcement action, alleg-\nclause. In addition, the OIG found that while             ing numerous instances of misconduct by\nthere was a backlog of clearance requests at              Enforcement attorneys during the course of\nthe time, interim clearances were granted for             the investigation. As noted in the previous\nindividuals to work at the SEC within seven to            Semiannual Report, the OIG investigation\nten business days, and full clearances typically          had been stayed pending a Court ruling on a\nfollowed within 90 days of the initial clear-             motion in which the complainant made simi-\nance request.                                             lar allegations to those contained in the initial\n                                                          complaint to the OIG. Because the Court had\n\n                                                     76\n\x0cdirect jurisdiction over these similar claims,             tion files for three examinations conducted of\nand was in a position to grant the relief sought           the firm. The OIG also took the testimony of\nby the complainant, the OIG had deferred                   17 witnesses who had knowledge of the facts\nfurther investigation of this matter pending a             and circumstances surrounding the allegations\ndetermination by the Court on these claims.                in the complaint. The OIG has nearly com-\n                                                           pleted its investigatory work and intends to\n    In September 2010, the Court entered an                issue its report of investigation early within the\norder denying without prejudice the com-                   next reporting period.\nplainant\xe2\x80\x99s motion that contained the pertinent\nallegations that were brought to the OIG\xe2\x80\x99s\nattention and did not address the merits of the            Allegation of Misconduct by an SEC\nclaims. In light of the Court\xe2\x80\x99s ruling, the OIG            Official Testifying Before Congress\ndecided to move forward with its investigation.\nThe OIG intends to conclude its investigative                   During the reporting period, the OIG\nwork and issue its report of investigation dur-            opened an investigation into allegations that\ning the next semiannual reporting period.                  an SEC official violated federal laws, as well as\n                                                           conduct and ethics rules, when the official tes-\n                                                           tified before a Congressional Committee. The\nComplaint of Failure of an SEC                             OIG researched and analyzed pertinent provi-\nRegional Office to Uncover Fraud and                       sions of federal law, the government-wide eth-\nInappropriate Conduct on the Part of a                     ics standards and the SEC\xe2\x80\x99s conduct rules. In\nSenior-Level Official                                      addition, the OIG obtained and reviewed\n                                                           thousands of e-mails for approximately 18\n     In March 2010, the OIG received an                    SEC employees and prepared a detailed chro-\nanonymous complaint alleging that a senior-                nology of events. The OIG plans to conduct\nlevel official in the investment adviser exami-            on-the-record testimony or interviews of indi-\nnation program at an SEC Regional Office                   viduals with knowledge of relevant facts and\ninstructed examiners to not pursue certain                 circumstances and complete its investigation\n\xe2\x80\x9cred flags\xe2\x80\x9d in an examination in which the                 during the next reporting period.\nSEC staff uncovered a massive fraud. The\ncomplaint further alleged that the senior offi-\ncial\xe2\x80\x99s apparent motive for these instructions              Complaint of Abusive and Intimidating\nwas that he either performed, or was materi-               Behavior\nally involved in directing, the most recent\nprior examination of the firm that did not un-                 During the reporting period, the OIG\ncover the fraud, although it existed at the time.          commenced an investigation into an anony-\nIn addition, the complaint alleged that a hos-             mous complaint that a staff member at SEC\ntile work environment existed in the Regional              Headquarters had engaged in abusive and in-\nOffice as a result of management\xe2\x80\x99s failure to              timidating behavior toward contract staff, used\naggressively discipline the senior official after a        profane language, and threatened their job\nprevious OIG investigation revealed that the               security. The complaint further claimed that\nsenior official had viewed pornographic im-                the staff member had lied to his supervisor\nages from an SEC computer.                                 about certain of these events and that his su-\n                                                           pervisor appeared to be unaware of the staff\n    During the reporting period, the OIG ob-               member\xe2\x80\x99s abusive and intimidating conduct.\ntained and reviewed the e-mail records of 11               The complaint also alleged an inappropriate\nformer and current SEC employees, and                      relationship between this staff member and a\nsearched over 68,000 e-mails. We also ob-                  contract employee. Included with the anony-\ntained and reviewed thousands of pages of                  mous complaint were the statements of seven\npertinent documents, including the examina-                witnesses that were submitted in support of\n\n                                                      77\n\x0cthe complaint. The complainant requested                 Investigation Concerning the Role of\nthat the statements be safeguarded to protect            Political Appointees in the Freedom of\nthe privacy and job security of the contract             Information Act Process\nstaff, who feared retribution.\n                                                              The OIG opened an investigation in re-\n     The OIG has taken the sworn testimony               sponse to a written request from two Members\nof 15 individuals, including both SEC staff              of Congress. This written request expressed\nmembers and contractor personnel. The                    concern about a layer of political review of\nOIG also conducted interviews of three other             FOIA requests and Congressional information\nSEC staff members and additional follow-up               requests at another federal department. The\ninterviews. In addition, the OIG has obtained            letter requested that the OIG determine\nand reviewed security camera recordings and              whether, and if so, the extent to which, politi-\nnumerous relevant documents. The OIG also                cal appointees at the SEC are made aware of\nobtained from OIT and searched the e-mails               information requests and have a role in re-\nof ten individuals. The OIG plans to finalize            quest reviews or decision-making.\nits report of investigation in this matter during             After receiving the Congressional request,\nthe next semiannual reporting period.                    the OIG obtained and reviewed relevant\n                                                         documents from the SEC\xe2\x80\x99s Office of Freedom\n                                                         of Information and Privacy Act Operations,\nAllegation of Improper Access to SEC\nFacilities and Computer Systems                          including documents describing the process\n                                                         for responding to FOIA requests and a list of\n    The OIG opened an investigation after                FOIA liaisons throughout the agency. The\nreceiving a complaint that at least one con-             OIG also obtained and reviewed a list of all\ntractor employee worked at the SEC before                SEC political appointees from OHR. The\nhaving a background investigation conducted              OIG plans to take on-the-record testimony of\nand being cleared. Specifically, it was alleged          relevant parties and to obtain and review per-\nthat this particular contractor employee, and            tinent e-mails. The OIG plans to issue its re-\npossibly other contractor employees, entered             port of investigation prior to the end of the\nSEC buildings and accessed SEC computer                  next semiannual reporting period.\nsystems and applications for months before\nhaving a background investigation completed              Allegation of Procurement Violations\nand being issued an SEC badge.\n                                                             The OIG continued its investigation into\n    During the reporting period, the OIG met             allegations made by a whistleblower that a\nwith and interviewed the complainant, ob-                senior management official awarded contracts\ntained pertinent documents from the com-                 to a company in violation of the governing\nplainant and others, and obtained and re-                laws, rules, and/or policies pertaining to con-\nviewed e-mails of certain SEC contractor em-             tracting procedures.!!In addition, it was al-\nployees for the relevant time period. The                leged that the product purchased by the SEC\nOIG plans to take sworn, on-the-record testi-            in connection with these contracts failed to\nmony of the subjects of the investigation,               perform its intended functions, resulting in\ncomplete its investigative work, and issue its           wasted agency resources.!\nreport of investigation during the next semi-\nannual reporting period.                                     During this reporting period, the OIG\n                                                         completed its review of relevant documents\n                                                         and obtained, reviewed, and searched e-mails\n                                                         for 16 SEC employees and one former SEC\n                                                         contractor for approximately a two-and-a-half\n\n\n\n                                                    78\n\x0cyear period. The OIG also took the sworn                OCIE during the examination of a registrant\ntestimony of 19 SEC employees and manag-                was leaked to a major newspaper. The OIG\ners with knowledge of this matter. The OIG\xe2\x80\x99s            has completed its review of over 500,000 e-\ninvestigative work has been completed and we            mails for the relevant period obtained for over\nexpect to issue a report of investigation during        20 employees, who may have viewed the non-\nthe next semiannual reporting period.!                  public information shortly before that\n                                                        information was published in a newspaper ar-\n                                                        ticle. During the reporting period, the OIG\nAllegation of Negligence in the                         interviewed or took the testimony of potential\nConduct of an Enforcement                               witnesses and referred the matter to the DOJ.\nInvestigation                                           The OIG has been cooperating with the DOJ\n                                                        on a parallel investigation. We expect the\n    The OIG continued its investigation into a\n                                                        OIG investigation to be completed during the\ncomplaint received from a former\n                                                        next reporting period.\nEnforcement attorney, alleging that\nEnforcement committed acts of negligence in\nthe conduct of an insider trading\n                                                        Allegation of Unauthorized Disclosure\ninvestigation.! The complaint was based upon            of Non-Public Information to the News\nnewly-discovered information that purport-              Media\nedly demonstrated that Enforcement had ac-\ncess to specific evidence showing that insider               The OIG is conducting an investigation\ntrading had occurred prior to the time                  into a complaint from legal counsel, alleging\nEnforcement closed its investigation of the             that SEC staff disclosed non-public\nmatter. Previously, the OIG had taken the               information of an investigation of its client to\nsworn testimony of the complainant and re-              the news media in violation of SEC rules and\nviewed documentation provided by the com-               regulations governing the unauthorized disclo-\nplainant.                                               sure of non-public information. Specifically,\n                                                        the complainant alleged that one or more per-\n     During this reporting period, the OIG re-          sons at the SEC disclosed to a reporter from a\nviewed numerous documents related to the                major newspaper that its client: (1) was the\noriginal Enforcement investigation that was             subject of a non-public investigation into pos-\nclosed without action, as well as documents             sible violations of the federal securities laws;\nrelated to a subsequent investigation of the            (2) had reached a proposed settlement to re-\nsame matter that resulted in the SEC filing a           solve the investigation; and (3) had agreed to\ncivil action.! The OIG also took the sworn              pay a specific dollar amount to settle the inves-\ntestimony of the Enforcement Branch Chief               tigation.\nand Staff Attorneys who were assigned to the\noriginal insider trading investigation.! The                 The OIG is obtaining documents relevant\nOIG\xe2\x80\x99s investigative work has been completed,            to the complainant\xe2\x80\x99s allegations, including\nand we expect to issue a report of investiga-           numerous e-mails from the relevant current\ntion during the next semiannual reporting               and former SEC staff members and senior\nperiod.!                                                officials. The OIG intends to interview indi-\n                                                        viduals with knowledge of the relevant facts\n                                                        and circumstances and expects to issue a re-\nComplaint of Unauthorized Disclosure                    port of investigation in the next reporting pe-\nof Non-Public Information                               riod.\n    During the reporting period, the OIG\ncontinued its investigation into an allegation\nthat non-public information provided to\n\n                                                   79\n\x0cAllegation of Improper Preferential                         During the reporting period, the OIG re-\nTreatment and Failure to Investigate                    searched federal law and SEC ethics guidance\nAlleged Obstruction of SEC                              regarding post-employment restrictions and\nInvestigation at Regional Office                        interviewed a staff member of the SEC\xe2\x80\x99s Eth-\n    The OIG opened an investigation after               ics Office. In addition, the OIG reviewed\nreceiving a complaint that attorneys at a Re-           more than two years of notice of representa-\ngional Office failed to properly investigate a          tion letters submitted to the SEC pursuant to\nprominent law firm for alleged obstruction of           17 C.F.R. \xc2\xa7 200.735-8(b). The OIG also re-\nan ongoing SEC case, allegedly as the result of         viewed the former employee\xe2\x80\x99s Official Person-\nimproper preferential treatment. In addition,           nel Folder, as well as comment letters submit-\nit was alleged that Regional Office staff im-           ted to the SEC by the former employee\xe2\x80\x99s cur-\nproperly provided information related to that           rent employer. Finally, the OIG requested\nmatter to the law firm.                                 and obtained thousands of e-mails related to\n                                                        the allegations at issue. The OIG plans to\n    In this reporting period, the OIG met with          search and review these e-mails and to con-\nand interviewed the complainants and took               duct testimony of witnesses with information\nsworn, on-the-record testimony of a relevant            relevant to the investigation during the next\nwitness. In addition, the OIG reviewed volu-            reporting period.\nminous documents provided by the complain-\nants and obtained from other sources, and\nprepared a chronology of events. The OIG                Complaint of Abuse of Compensatory\n                                                        Time\nalso obtained and reviewed e-mails of ten\nSEC employees for the relevant period of                    The OIG commenced an investigation\ntime. The OIG plans to take the testimony of            into an anonymous complaint that requested\npertinent parties, complete its investigative           an investigation of a Headquarters employee\xe2\x80\x99s\nwork, and issue its report of investigation dur-        use of compensatory time for travel, among\ning the next semiannual reporting period.               other potential violations. During the report-\n                                                        ing period, the OIG obtained and analyzed\nComplaint of Violation of                               relevant travel and time and attendance re-\nPost-Employment Restrictions                            cords for the employee. The OIG also ana-\n                                                        lyzed the regulations, policies and procedures\n     The OIG opened an investigation into al-           applicable to the claiming of compensatory\nlegations that a former employee violated fed-          time for travel. The OIG plans to complete its\neral post-employment restrictions or SEC eth-           analysis and take the testimony of the em-\nics rules when the employee left the SEC and            ployee and his supervisor during the next\nbegan working at an entity regulated by the             semiannual reporting period.\nSEC, as well as broader concerns with respect\nto the revolving door between the SEC and\noutside industry.\n\n\n\n\n                                                   80\n\x0cU.S. Securities and Exchange Commission\n\n                                                                       SEMIANNUAL\n                                                                       REPORT TO\n                                                                       CONGRESS\n                                                Office of\n                                               Inspector\n                                                General\n\n\n\n\n                                          REVIEW OF LEGISLATION\n                                          AND REGULATIONS\n                                              During the reporting period, the OIG re-             OIG\xe2\x80\x99s report entitled, Assessment of the SEC\xe2\x80\x99s\n                                          viewed legislation and proposed and final                Bounty Program, which was issued during the\n                                          rules and regulations relating to the programs           previous reporting period. The IG requested\n                                          and operations of the SEC, pursuant to Sec-              that the legislation incorporate specific defi-\n                                          tion 4(a)(2) of the Inspector General Act.               ciencies indentified in the OIG\xe2\x80\x99s review of the\n                                                                                                   SEC bounty program and mandate their im-\n                                              Significantly, during this period, Congress          plementation as part of the legislation\xe2\x80\x99s sig-\n                                          enacted major financial regulatory reform                nificant expansion of that program. In par-\n                                          with the Dodd-Frank Wall Street Reform and               ticular, the IG recommended that H.R. 4173\n                                          Consumer Protection Act (Dodd-Frank Act),                require that the SEC (1) develop specific crite-\n                                          Public Law 111-203, on July 21, 2010. Prior              ria for recommending the award of bounties;\n                                          to the passage of this legislation, the OIG re-          (2) develop and post an application form that\n                                          viewed and provided comments on various                  asks whistleblowers to provide certain\n                                          provisions of the proposed legislation that              information; (3) establish policies regarding\n                                          would significantly impact the SEC, the SEC              when to follow up with whistleblowers to clar-\n                                          OIG and other Inspectors General.                        ify information provided in bounty applica-\n                                                                                                   tions and/or obtain supporting documenta-\n                                              Specifically, on April 22, 2010, the SEC             tion; and (4) develop a tracking system for all\n                                          IG provided a letter to the Honorable Paul E.            bounty applications to ensure uniformity and\n                                          Kanjorski (D-Pennsylvania), Chairman of the              consistency in the process.\n                                          Subcommittee on Capital Markets, Insurance,\n                                          and Government Sponsored Enterprises of                      The SEC IG, during the reporting period,\n                                          the U.S. House of Representatives Committee              also commented on, and suggested various\n                                          on Financial Services. In that letter, the IG            alternatives to, a provision of the financial re-\n                                          provided several recommendations regarding               form legislation that would have required\n                                          provisions of H.R. 4173, the \xe2\x80\x9cWall Street Re-            Presidential appointment and Senate confir-\n                                          form and Consumer Protection Act,\xe2\x80\x9d that                  mation of several financial regulatory agency\n                                          would expand the SEC\xe2\x80\x99s bounty program be-                IGs, including the SEC IG. Additionally, on\n                                          yond its existing scope that was limited to in-          June 14, 2010, the SEC IG, together with the\n                                          sider trading cases, particularly in light of the        IGs of the CFTC, the NCUA, the PBGC and\n\n                                                                                              81\n\x0cthe Federal Reserve Board provided a letter to          Chairman\xe2\x80\x99s Office, determine whether certain\nthe Honorable Charles E. Grassley (R-Iowa)              legislative changes to Section 13(f) should be\nand the Honorable Claire McCaskill (D-                  pursued. The OIG also recommended that\nMissouri), expressing the IG\xe2\x80\x99s support and ap-          IM, in consultation with Risk Fin and the\npreciation for their leadership in crafting             Chairman\xe2\x80\x99s Office, consider whether to rec-\nAmendment 4072 to S. 3217, the \xe2\x80\x9cRestoring               ommend that the Commission adopt a rule\nAmerican Financial Stability Act of 2010,\xe2\x80\x9d              requiring institutional investment managers to\nwhich contained measures designed to en-                report aggregate purchases and sales of\nhance the accountability of IGs.                        securities. In connection with its review of\n                                                        Section 13(f) reporting requirements and its\n     Subsequent to the enactment of the                 assessment of the Division of Corporation\nDodd-Frank Act, the OIG carefully reviewed              Finance\xe2\x80\x99s confidential treatment processes and\nand analyzed this legislation to identify those         procedures, the OIG reviewed and analyzed\nprovisions that would impact the SEC, the               the rules governing requests for confidential\nSEC OIG and other Offices of Inspector                  treatment of information filed pursuant to the\nGeneral. The OIG focused its review on pro-             Securities Act and the Exchange Act, which\nvisions that (1) required the OIG to establish a        are found at 17 C.F.R. \xc2\xa7 230.406 and 17\nnew suggestion hotline program for SEC em-              C.F.R. \xc2\xa7 240.24b-2, respectively.\nployees (which was implemented on Septem-\nber 27, 2010); (2) provided for the funding of               In addition, during its audit of the SEC\xe2\x80\x99s\nthe OIG\xe2\x80\x99s suggestion hotline through the                real property leasing procurement process\nnewly-established Investor Protection Fund;             (Report No. 484), the OIG reviewed the statu-\n(3) provided that the IG reports to the Com-            tory provision that provided the SEC with in-\nmission, rather than to the SEC Chairman;               dependent leasing authority, Section 4(b)(3) of\nand (4) required that the SEC annually pro-             the Exchange Act, 15 U.S.C. \xc2\xa7 78d(b)(3), as\nvide to Congress audited financial statements           well as the applicable legislative history, House\nof the Investor Protection Fund (which audit            Conference Report No. 101-924, 101st Cong.,\nwill be performed by the SEC OIG for the                2nd Sess. 1990. In connection with its assess-\nperiod ended September 30, 2010).                       ment of the SEC\xe2\x80\x99s privacy program (Report\n                                                        No. 485), the OIG reviewed the requirements\n    The OIG also reviewed statutes, rules,              of various statutes, rules and regulations de-\nregulations and requirements, and their im-             signed to protect the privacy of individuals\npact on Commission programs and opera-                  and prevent the disclosure of sensitive\ntions, within the context of audits and reviews         information, including the SEC Rules of the\nconducted during the period. For example, in            Road, SECR 24-04.A01, and SEC Imple-\none review completed during the reporting               menting Instruction 24-04.02.01 (01.0), \xe2\x80\x9cSen-\nperiod (Report No. 480), the OIG examined               sitive Data Protection,\xe2\x80\x9d April 6, 2006. As dis-\nthe requirements of Section 13(f) of the                cussed in detail in the Section of this Report\nSecurities Exchange Act of 1934 (Exchange               on Advice and Assistance Provided to the\nAct), 15 U.S.C. \xc2\xa7 78m(f), and Commission                Agency and the Government Accountability\nRule13f-1, 17 C.F.R. \xc2\xa7 240.13f-1 promulgated            Office, the OIG reviewed and provided com-\nthereunder, which require periodic reporting            ments on drafts of an updated version of the\nregarding the securities holdings of institu-           Rules of the Road, Updated Version 6.0,\ntional investment managers. As a result of its          which was finalized and posted to the\nreview, the OIG recommended that the Divi-              Commission\xe2\x80\x99s Intranet site on or about June\nsion of Investment Management (IM), in con-             23, 2010.\nsultation with the Division of Risk, Strategy,\nand Financial Innovation (Risk Fin), the                   Also during the reporting period, the OIG\nOffice of the General Counsel and the                   conducted a comprehensive review of a draft\n\n                                                   82\n\x0crevised Systems of Record Notice for OIG                community. In addition to the financial regu-\nInvestigative Files, SEC-43. The OIG                    latory reform measures discussed in detail\nprovided extensive detailed comments on the             above, this legislation included S. 1508, the\ndraft revised notice to the OIT\xe2\x80\x99s Chief Pri-            \xe2\x80\x9cImproper Payments Elimination and Recov-\nvacy Officer. In particular, the OIG\xe2\x80\x99s com-             ery Act of 2010,\xe2\x80\x9d which was enacted as Public\nments sought to ensure that the routine uses            Law 111-204 on July 22, 2010; H.R. 4983, the\ncontained in the notice accurately and ade-             \xe2\x80\x9cTransparency in Government Act of 2010\xe2\x80\x9d;\nquately described the purposes for which OIG            S. 372, the \xe2\x80\x9cWhistleblower Protection En-\ninvestigative records might be disclosed out-           hancement Act of 2009\xe2\x80\x9d; and H.R. 5815, the\nside the Commission.                                    \xe2\x80\x9cInspector General Authority Improvement\n                                                        Act of 2010.\xe2\x80\x9d The SEC OIG also responded\n     Finally, in coordination with the Legisla-         to survey questions regarding the need on the\ntion Committee of the CIGIE and other In-               part of IGs for testimonial subpoena authority\nspectors General, the SEC OIG closely re-               and the ability of federal employees to engage\nviewed, tracked and provided views on various           in whistleblowing without fear of retaliation.\nlegislation of interest to the Inspector General\n\n\n\n\n                                                   83\n\x0c\x0cU.S. Securities and Exchange Commission\n\n                                                              SEMIANNUAL\n                                                              REPORT TO\n                                                              CONGRESS\n                                             Office of\n                                            Inspector\n                                             General\n\n\n\n\n                                                         STATUS OF RECOMMENDATIONS WITH\n                                                             NO MANAGEMENT DECISIONS\n                                           Management decisions have been made on all audit reports issued\n                                                   before the beginning of this reporting period.\n\n\n                                                          REVISED MANAGEMENT DECISIONS\n\n                                                No management decisions were revised during the period.\n\n\n                                            AGREEMENT WITH SIGNIFICANT MANAGEMENT DECISIONS\n\n                                          The Office of Inspector General agrees with all significant management\n                                                       decisions regarding audit recommendations.\n\n\n\n                                                 INSTANCES WHERE INFORMATION WAS REFUSED\n\n                                                         During this reporting period, there were no\n                                                         instances where information was refused.\n\n\n\n\n                                                                             85\n\x0c\x0cTable 1\nList of Reports: Audits and Evaluations\n\n\n      Audit /\n                                       Title                      Date Issued\nEvaluation Number\n                       Assessment of Corporation Finance\xe2\x80\x99s\n      479                          Confidential                   Sep 29, 2010\n                       Treatment Processes and Procedures\n                    Review of the SEC\xe2\x80\x99s Section 13(f) Reporting\n      480                                                         Sep 27, 2010\n                                  Requirements\n\n      483             Audit of the FedTraveler Travel Service     Sep 22, 2010\n\n\n\n      484           Real Property Leasing Procurement Process     Sep 30, 2010\n\n\n\n      485            Assessment of the SEC\xe2\x80\x99s Privacy Program      Sep 29, 2010\n\n\n                      Review of PRISM Automated Procurement\n      486                                                         Sep 30, 2010\n                             System Support Contracts\n\n\n\n\n                                      87\n\x0c\x0cTable 2\nReports Issued with Costs Questioned\nor Funds Put to Better Use\n(including disallowed costs)\n\n                                                                 Number of\n                                                                               Value\n                                                                  Reports\nA. REPORTS ISSUED PRIOR TO THIS PERIOD\n\n  For which no management decision had been made on any issue\n     at the commencement of the reporting period                     3       $6,976,143.00\n  For which some decisions had been made on some issues at the\n     commencement of the reporting period                            0                 $0\n\n\nB. REPORTS ISSUED DURING THIS PERIOD                                 3        $231,363.00\n\n\n\nTOTAL OF CATEGORIES A AND B                                          6       $7,207,506.00\n\n\nC. For which final management decisions were made during this\n     period                                                          2         $30,312.00\n\n\nD. For which no management decisions were made during this\n     period                                                          4       $2,609,575.00\n\n\nE. For which management decisions were made on some issues\n                                                                     1       $4,567,619.00\n     during this period\n\nTOTAL OF CATEGORIES C, D AND E                                       7       $7,207,506.00\n\n\n\n\n                                                89\n\x0c\x0cTable 3\nReports With Recommendations on\nWhich Corrective Action Has Not Been\nCompleted\n               RECOMMENDATIONS OPEN 180 DAYS OR MORE\n\n   Audit/Inspection/         Issue Date            Summary of Recommendation\n Evaluation/ or Investi-\n   gation # and Title\n428 - Electronic Documents   7/25/2007     Issue program guidance.\nProgram\n                                           Develop written procedures for loading data work\n                                           from the regional offices.\n439 - Student Loan           3/27/2008     In consultation with the Union, develop a detailed\nProgram                                    distribution plan.\n446B - SEC\xe2\x80\x99s Oversight of    9/25/2008     Ensure the BDRA system includes financial\nBear Stearns and Related                   information, staff notes and other written\nEntities: Broker-Dealer                    documentation and is used to generate\nRisk Assessment (BDRA)                     management reports.\nProgram\n                                           Resolve technological problems with the BDRA\n                                           system.\n450 - Practices Related to    3/8/2009     Improve analytical capabilities of the Enforcement\nNaked Short Selling                        Complaint Center\xe2\x80\x99s e-mail complaint system.\nComplaints and Referrals\n                                           Improve the Complaints, Tips and Referrals\n                                           database to include additional information about\n                                           and better track complaints.\n                                           Ensure the Office of Internet Enforcement updates\n                                           and resumes using previous complaint referral\n                                           tracking system or develops a new system.\n455 - Attorney Annual         9/9/2008     Require all SEC attorneys to certify annually that\nCertification of Bar                       they are active bar members and to acknowledge\nMembership                                 that their failure to maintain active bar membership\n                                           may result in referral to the appropriate authorities\n                                           and/or disciplinary action.\n432 - Oversight of           12/12/2007    Provide guidance and training to Division of\nReceivers and Distribution                 Enforcement staff on receiver/distribution agent\nAgents                                     oversight.\n433 - Corporation Finance    09/30/2008    Develop a centralized tracking system for Divisions\nReferrals                                  of Enforcement and Corporation Finance staff\n                                           regarding non-delinquent filer referrals.\n                                           Enhance CF's gatekeeper role once outcome\n                                           information becomes more available.\n\n\n                                          91\n\x0c   Audit/Inspection/          Issue Date           Summary of Recommendation\n Evaluation/ or Investi-\n   gation # and Title\n456 - Public Transportation   3/27/2009    Implement additional management controls over\nBenefit Program                            regional office program operations.\n458 - SEC Oversight of        8/27/2009    Develop measures for determining whether\nNationally Recognized                      subscriber fees charged by the credit rating\nStatistical Rating                         agencies are reasonable.\nOrganizations (NRSROs)\n                                           Review the OIG findings on conducting\n                                           examinations before issuing orders approving\n                                           applications and, as appropriate, seek legislative\n                                           authority to conduct examinations as part of the\n                                           NRSRO application process.\n                                           Review the OIG findings concerning Public\n                                           Company Accounting Oversight Board (PCAOB)\n                                           oversight of NRSRO auditors and, as appropriate,\n                                           seek legislative authority to provide the PCAOB\n                                           with oversight over audits of NRSROs.\n                                           Review the OIG findings on monitoring of credit\n                                           ratings and direct the recommendation of\n                                           appropriate rules to implement a comprehensive\n                                           credit rating monitoring requirement for NRSROs.\n                                           Review the OIG findings on credit ratings\n                                           disclosures and, as appropriate, direct the\n                                           recommendation of additional rule amendments to\n                                           enhance the disclosures surrounding the credit\n                                           ratings process.\n                                           Review the OIG findings on the Rule 17g-5\n                                           information disclosure program and Regulation FD\n                                           and, as appropriate, direct the assessment of the\n                                           potential effects on competition in the credit rating\n                                           industry of the re-proposed amendments and\n                                           recommend rule changes, if appropriate.\n                                           Review the OIG findings on public comment on a\n                                           firm\xe2\x80\x99s application and the status of competition and\n                                           direct the incorporation of seeking and\n                                           consideration of public comments into the SEC\xe2\x80\x99s\n                                           NRSRO oversight process.\n459 - Regulation D            3/31/2009    Evaluate the Electronic Data Gathering And\nExemption Process                          Retrieval (EDGAR) authentication process and\n                                           make necessary changes to further streamline or\n                                           simplify the process.\n                                           Analyze how other agencies have implemented\n                                           authentication processes and implement any\n                                           appropriate procedures.\n\n\n\n\n                                             92\n\x0c   Audit/Inspection/       Issue Date            Summary of Recommendation\n Evaluation/ or Investi-\n   gation # and Title\n460 - Management and       3/26/2010     Identify the universe of open interagency\nOversight of Interagency                 acquisitions and the corresponding amounts\nAcquisition Agreements                   obligated and expended on each interagency\n(IAAs) at the SEC                        acquisition, and reconcile the universe of open\n                                         interagency acquisitions with the financial\n                                         information maintained by the Office of Financial\n                                         Management (OFM) regarding open interagency\n                                         acquisitions and the corresponding amounts\n                                         obligated and expended.\n                                         Maintain interagency acquisition data in the\n                                         appropriate centralized automated system to\n                                         ensure appropriate access to and accuracy of data\n                                         and to provide for report generation capabilities.\n                                         Establish appropriate internal controls to provide\n                                         reasonable assurance that, in the future,\n                                         interagency acquisition agreement data is\n                                         accurate, timely, complete and reliable.\n                                         Develop internal written policies and procedures for\n                                         administering interagency acquisitions that are\n                                         based on appropriate risk assessments, address\n                                         both Economy Act and Non-Economy Act\n                                         acquisitions, and incorporate Federal Acquisition\n                                         Regulation (FAR) Subpart 17.5, the Office of\n                                         Federal Procurement Policy\xe2\x80\x99s (OFPP\xe2\x80\x99s) guidance\n                                         on interagency acquisitions, and other\n                                         requirements regarding interagency acquisitions,\n                                         as appropriate.\n                                         In developing written policies and procedures for\n                                         assisted interagency acquisitions, incorporate the\n                                         requirements of the Economy Act, the OFPP\n                                         guidance on interagency acquisitions, and other\n                                         controlling authorities, and coordinate with OFM to\n                                         assure its minimum requirements are also\n                                         included.\n                                         Benchmark other federal agencies\xe2\x80\x99 written policies\n                                         and procedures for interagency acquisitions when\n                                         developing its IAA written policies and procedures.\n                                         Develop written policies and procedures regarding\n                                         interagency acquisitions that include timeframes\n                                         and procedures for closing out Economy Act and\n                                         non-Economy Act interagency acquisitions and\n                                         deobligating funds for both assisted and direct\n                                         acquisitions, and ensure the close-out procedures\n                                         identify the Commission\xe2\x80\x99s process for coordinating\n                                         with servicing agencies.\n                                         Promptly identify all IAAs that have expired and\n                                         have not been closed, and deobligate any funds\n                                         that remain on the expired agreements.\n\n\n\n\n                                        93\n\x0c   Audit/Inspection/            Issue Date           Summary of Recommendation\n Evaluation/ or Investi-\n   gation # and Title\n                                             Take action to close the interagency acquisitions\n                                             identified for which the performance period expired\n                                             and deobligate the $6.9 million in unused funds\n                                             that remain on the interagency acquisitions, in\n                                             accordance with the appropriate close-out\n                                             procedures.\n                                             Update the interagency acquisition Determinations\n                                             and Findings and interagency acquisition forms to\n                                             include the information required by the FAR,\n                                             Treasury Financial Manual Bulletin No. 2007-03 (in\n                                             consultation with the OFM), and the OFPP\n                                             guidance on interagency acquisitions.\n                                             Develop and implement appropriate procedures to\n                                             review interagency acquisition cost estimates to\n                                             ensure they are reasonable and properly\n                                             supported.\n                                             Assess the Mid-Atlantic Cooperative Administrative\n                                             Support Unit (CASU) IAA to determine if the costs\n                                             incurred are reasonable and the CASU IAA is in the\n                                             best interest of the Commission.\n                                             Consider sources of administrative support\n                                             services that charge lower amounts if it is\n                                             determined that the Mid-Atlantic CASU IAA does\n                                             not provide the best value to the Commission.\n                                             Provide additional training to contracting staff and\n                                             customers regarding interagency acquisitions,\n                                             which includes training on developing and ensuring\n                                             the adequacy of statements of work and\n                                             statements of objectives according to applicable\n                                             guidance and requirements.\n461 - Review of the             3/31/2009    Conduct appropriate analysis and complete and\nCommission\xe2\x80\x99s Restacking                      submit an Exhibit 300 to the Office of Management\nProject                                      and Budget (OMB).\n                                             Develop and adopt policies and procedures for\n                                             investments in space consistent with OMB\n                                             guidance.\n464 - Notification to the OIG   1/23/2009    Provide the OIG with three business days notice\nof Decisions on Disciplinary                 prior to decisions on disciplinary action.\nActions and Settlement\nAgreements Involving\nSubjects of OIG\nInvestigations\n                                             Provide the OIG with five business days notice\n                                             prior to executing settlement agreements.\n\n\n\n\n                                                94\n\x0c   Audit/Inspection/         Issue Date            Summary of Recommendation\n Evaluation/ or Investi-\n   gation # and Title\n465 - Review of the SEC\xe2\x80\x99s    9/25/2009     Collaborate with office and division managers to\nCompliance with the                        review position descriptions of current FOIA/\nFreedom of Information Act                 Privacy Act staff and FOIA liaisons to include\n(FOIA)                                     appropriate FOIA task descriptions and\n                                           performance standards, and review pay grades to\n                                           ensure they reflect actual FOIA responsibilities and\n                                           duties.\n466 - Assessment of the      3/26/2010     Improve the oversight of IT investments to ensure\nSEC Information Technology                 that projects are in compliance with the\n(IT) Investment Process                    requirements in the Capital Planning and\n                                           Investment Control (CPIC) policies and procedures\n                                           specifically dealing with the implementation of the\n                                           control and evaluate phases of the CPIC process.\n                                           Require status updates be provided for all ongoing\n                                           projects every six months to manage resources\n                                           (i.e., staff, cost and time) for IT investments of\n                                           $200,000 and above.\n                                           Immediately fill the position of Assistant Director for\n                                           the Project Management Office with an\n                                           experienced and qualified candidate.\n                                           Perform an assessment of the project management\n                                           function to compare the current ratio of projects per\n                                           project manager to the industry\xe2\x80\x99s acceptable ratio\n                                           of projects per project manager.\n                                           Formally delegate authority to the Chief Information\n                                           Officer (CIO) necessary for the management and\n                                           oversight of the CPIC process, to include the full\n                                           authority to develop and execute all information\n                                           technology policy, as approved by the Chairman.\n                                           Revise 17 C.F.R. \xc2\xa7 200.13 to provide the CIO with\n                                           full authority to develop and issue IT policies and\n                                           carry out the prescribed substantive responsibilities\n                                           under 44 U.S.C. \xc2\xa7 3506 and OMB Guidance\n                                           M-09-02, and remove the CIO/Director of the Office\n                                           of Information Technology (OIT) from under the\n                                           supervision of the Executive Director or any\n                                           position other than the Chairman for those\n                                           substantive responsibilities.\n                                           Revise SEC Regulation (SECR) 24-02 to add a\n                                           responsibility that the division directors, office\n                                           heads, and regional directors ensure that all IT\n                                           investments within their responsibility adhere to the\n                                           CPIC policies and procedures, and create an\n                                           enforcement mechanism for the CIO and\n                                           Information Officers Council to utilize when they\n                                           discover investments that have been funded\n                                           outside of the CPIC process.\n                                           Conduct periodic internal reviews to ensure that the\n                                           requirements in Operating Directive 24-02.01, IT\n                                           Investment Management, are enforced, (e.g., the\n                                           requirement that two representatives from the\n                                           program area be identified for all ongoing projects).\n\n\n                                          95\n\x0c   Audit/Inspection/           Issue Date                Summary of Recommendation\n Evaluation/ or Investi-\n   gation # and Title\n                                                 Require that all divisions and offices use OIT\xe2\x80\x99s\n                                                 project management system and update and\n                                                 maintain the data in the system for the investments\n                                                 within their program areas.\n471 - Audit of the Office of   9/25/2009         Determine the universe of active and open\nAcquisitions\xe2\x80\x99 Procurement                        contracts and the corresponding value of the\nand Contract Management                          contracts and reconcile this information with the\nFunctions                                        OFM\xe2\x80\x99s active contract list.\n                                                 Develop an internal process to ensure procurement\n                                                 data is accurately and fully reported in the Federal\n                                                 Procurement Data System for both SEC\n                                                 headquarters and regional offices.\n                                                 Develop an acquisition training plan to ensure\n                                                 compliance with OFPP training requirements.\n                                                 Provide regional offices with oversight, including\n                                                 the proper use of Contracting Officer\xe2\x80\x99s Technical\n                                                 Representatives, Inspection and Acceptance\n                                                 Officials, Point-of-Contact personnel and other\n                                                 personnel who handle procurement and contracting\n                                                 activities.\n                                                 Revise and finalize data migration plan and include\n                                                 key controls or steps to ensure accuracy of\n                                                 migrated data.\n                                                 Re-educate the acquisition workforce on the FAR\n                                                 requirements that are related to time-and-materials\n                                                 and labor-hour contracts.\n                                                 Update SECR 10-14, Procurement Contract\n                                                 Administration, regarding contract closeout and\n                                                 ensure that it properly aligns with the FAR.\n474 - Assessment of the        3/29/2010         Develop a communication plan to address outreach\nSEC\xe2\x80\x99s Bounty Program                             to both the public and the SEC personnel regarding\n                                                 the SEC bounty program, which includes efforts to\n                                                 make information available on the SEC\xe2\x80\x99s Intranet,\n                                                 enhance information available on the SEC\xe2\x80\x99s public\n                                                 website, and provide training to employees who are\n                                                 most likely to deal with whistleblower cases.\n\n\n\n\n                                            96\n\x0c  Audit/Inspection/       Issue Date                Summary of Recommendation\nEvaluation/ or Investi-\n  gation # and Title\n                                            Develop and post to the SEC\xe2\x80\x99s public website an\n                                            application form that asks the whistleblower to\n                                            provide information, including, e.g., (1) the facts\n                                            pertinent to the alleged securities law violation and\n                                            an explanation as to why the subject(s) violated the\n                                            securities laws; (2) a list of related supporting\n                                            documentation available in the whistleblower\xe2\x80\x99s\n                                            possession and available from other sources; (3) a\n                                            description of how the whistleblower learned about\n                                            or obtained the information that supports the claim,\n                                            including the whistleblower\xe2\x80\x99s relationship to the\n                                            subject(s); (4) the amount of any monetary rewards\n                                            obtained by the subject violator(s) (if known) as a\n                                            result of the securities law violation and how the\n                                            amount was calculated; and (5) a certification that\n                                            the application is true, correct, and complete to the\n                                            best of the whistleblower\xe2\x80\x99s knowledge.\n                                            Establish policies on when to follow up with\n                                            whistleblowers who submit applications to clarify\n                                            information in the bounty applications and obtain\n                                            readily available supporting documentation prior to\n                                            making a decision as to whether a whistleblower\xe2\x80\x99s\n                                            complaint should be further investigated.\n                                            Develop specific criteria for recommending the\n                                            award of bounties, including a provision that where\n                                            a whistleblower relies partially upon public\n                                            information, such reliance will not preclude the\n                                            individual from receiving a bounty.\n                                            Examine ways in which the Commission can\n                                            increase communications with whistleblowers by\n                                            notifying them of the status of their bounty requests\n                                            without releasing non-public or confidential\n                                            information during the course of an investigation or\n                                            examination.\n                                            Develop a plan to incorporate controls for tracking\n                                            tips and complaints from whistleblowers seeking\n                                            bounties into the development of the Division of\n                                            Enforcement\xe2\x80\x99s (Enforcement\xe2\x80\x99s) tips, complaints and\n                                            referrals processes and systems for other tips and\n                                            complaints, which should provide for the collection\n                                            of necessary information and require processes\n                                            that will help ensure that bounty applications are\n                                            reviewed by experienced Commission staff,\n                                            decisions whether to pursue whistleblower\n                                            information are timely made, and whistleblowers\n                                            who provide significant information leading to a\n                                            successful action for violation of the securities laws\n                                            are rewarded.\n\n\n\n\n                                       97\n\x0c   Audit/Inspection/          Issue Date                Summary of Recommendation\n Evaluation/ or Investi-\n   gation # and Title\n                                                Require that a bounty file (hard copy or electronic)\n                                                be created for each bounty application, which\n                                                should contain at a minimum the bounty\n                                                application, any correspondence with the\n                                                whistleblower, documentation of how the\n                                                whistleblower\xe2\x80\x99s information was utilized, and\n                                                documentation regarding significant decisions\n                                                made with regard to the whistleblower\xe2\x80\x99s complaint.\n                                                Incorporate best practices from the Department of\n                                                Justice (DOJ) and the Internal Revenue Service\n                                                (IRS) into the SEC bounty program with respect to\n                                                bounty applications, analysis of whistleblower\n                                                information, tracking of whistleblower complaints,\n                                                recordkeeping practices, and continual assessment\n                                                of the whistleblower program.\n                                                Set a timeframe to finalize new policies and\n                                                procedures for the SEC bounty program that\n                                                incorporate the best practices from DOJ and the\n                                                IRS, as well as any legislative changes to the\n                                                program.\n475 - Evaluation of the SEC   3/26/2010         Finalize the outstanding draft privacy-related\nPrivacy Program                                 policies and procedures and implement them\n                                                throughout the agency by the end of the fiscal year.\n476 - Evaluation of the SEC   3/26/2010         Revise the encryption policy and require that all\nEncryption Program                              portable media be encrypted.\n                                                Eliminate the option for divisions and offices to\n                                                select whether or not they will encrypt portable\n                                                media, i.e., thumb drives, CD/DVDs, etc.\nPI-09-05 - SEC Access Card    2/22/2010         Ensure, on a Commission-wide basis, that all\nReaders in Regional Offices                     regional offices are capable of capturing and\n                                                recording building entry and exit information of\n                                                Commission employees.\nPI-09-07 - Employee           3/10/2010         Review and update internal regulation and policy\nRecognition Program and                         for the SEC\xe2\x80\x99s Employee Recognition Program\nGrants of Employee Awards                       (ERP), and post the revised regulation and/or\n                                                policy to the SEC\xe2\x80\x99s Intranet site.\n                                                Ensure the revised ERP regulation and/or policy\n                                                specifically addresses whether informal recognition\n                                                awards are authorized and, if so, what criteria,\n                                                standards and approvals pertain.\n                                                Ensure the revised ERP regulation and/or policy\n                                                makes clear that appropriated funds may not be\n                                                used to pay for employee parking as an award.\n                                                Review various Budget Object Class (BOC) codes\n                                                currently used for non-monetary employee awards,\n                                                select the most apposite BOC and ensure all\n                                                properly authorized non-monetary awards are\n                                                charged to that BOC.\n\n\n\n\n                                           98\n\x0c   Audit/Inspection/             Issue Date                Summary of Recommendation\n Evaluation/ or Investi-\n   gation # and Title\n                                                   Approve requests to use appropriated funds for\n                                                   non-monetary employee awards only after ensuring\n                                                   an authorized agency officer has approved the\n                                                   awards under statutory and regulatory authority.\nROI-470 - Allegations of         2/24/2010         Institute procedures to require that a decision be\nConflict of Interest and                           made, documented and approved where\nInvestigative Misconduct                           Enforcement has informed the Commission it is\n                                                   continuing to consider recommending charges.\nROI-481 - Employees\xe2\x80\x99              3/3/2009         Have an employee\xe2\x80\x99s direct supervisor review a list\nSecurities Transactions                            of all pending cases in the group over the last year\n                                                   to compare against a list of all securities reported\n                                                   on Office of Government Ethics Form 450 for each\n                                                   employee.\n                                                   Conduct separate comprehensive and more\n                                                   frequent training on Commission Rule 5, its\n                                                   purpose and its requirements, for all SEC\n                                                   employees, supervisors and contractors.\nROI-491 - Allegation of          3/29/2010         Make efforts to recapture a portion of additional\nFraudulently Obtained                              award fees a contractor obtained based on\nAward Fees                                         potentially inaccurate data.\n                                                   Assign all contracts over $1 million to staff at the\n                                                   level of Assistant Director or higher, as well as the\n                                                   Office of Acquisitions, which provides oversight for\n                                                   various SEC acquisitions.\n                                                   Ensure there is a process to validate any additional\n                                                   fees awarded under contracts.\nROI-496 - Allegations of          1/8/2010         Consider promulgating or clarifying procedures for\nConflict of Interest, Improper                     documenting the reasons specific issues referred\nUse of Non-Public                                  to Enforcement by the Office of Compliance,\nInformation and Failure to                         Inspections and Examinations (OCIE) are not\nTake Sufficient Action                             investigated.\nAgainst Fraudulent\nCompany\n                                                   Consider methods to ensure no appearance of\n                                                   impropriety when a former SEC attorney\n                                                   represents a company shortly after SEC work\n                                                   provided specific, sensitive information related to\n                                                   the company.\nROI-502 - Allegations of         9/30/2009         Clarify policies on disclosure of non-public\nImproper Disclosures and                           information, including what constitutes non-public\nAssurances Given                                   information related to Enforcement investigations\n                                                   and parameters for discretionary release.\n                                                   Clarify Commission\xe2\x80\x99s policies regarding under what\n                                                   circumstances the staff is obligated to seek formal\n                                                   approval before making decisions that may bind\n                                                   the Commission.\nROI-505 - Failure to Timely      2/26/2010         Ensure as part of changes to complaint handling\nInvestigate Allegations of                         system that databases used to refer complaints are\nFinancial Fraud                                    updated to accurately reflect status of\n                                                   investigations and identity of staff.\n\n\n                                              99\n\x0c\x0cTable 4\nSummary of Investigative Activity\n\n\n                                 CASES                     NUMBER\n\n\n      Cases Open as of 3/31/10                               13\n      Cases Opened during 4/01/10 - 9/30/10                  13\n      Cases Closed during 4/01/10 - 9/30/10                  10\n      Total Open Cases as of 9/30/10                         16\n      Referrals to Department of Justice for Prosecution     3\n      Prosecutions                                           0\n      Convictions                                            0\n      Referrals to Agency for Disciplinary Action            3\n\n\n\n                      PRELIMINARY INQUIRIES                NUMBER\n\n\n      Inquiries Open as of 3/31/10                           71\n      Inquiries Opened during 4/01/10 - 9/30/10              42\n      Inquiries Closed during 4/01/10 - 9/30/10              23\n      Total Open Inquiries as of 9/30/10                     90\n      Referrals to Agency for Disciplinary Action            6\n\n\n\n                       DISCIPLINARY ACTIONS                NUMBER\n\n\n      Removals (Including Resignations and Retirements)      6\n      Demotions                                              1\n      Suspensions                                            2\n      Reprimands                                             1\n      Warnings/Other Actions                                 2\n\n\n\n\n                                     101\n\x0c\x0cTable 5\nSummary of Complaint Activity\n\n                                     DESCRIPTION              NUMBER\n\n\n Complaints Pending Disposition at Beginning of Period          7\n\n Hotline Complaints Received                                   132\n\n Other Complaints Received                                     232\n\n Total Complaints Received                                     364\n\n Complaints on which a Decision was Made                       360\n\n Complaints Awaiting Disposition at End of Period               11\n\n\n\n Disposition of Complaints During the Period\n\n Complaints Resulting in Investigations                         11\n\n Complaints Resulting in Inquiries                              42\n\n Complaints Referred to OIG Office of Audits                    9\n\n Complaints Referred to Other Agency Components                134\n\n Complaints Referred to Other Agencies                          8\n\n Complaints Included in Ongoing Investigations or Inquiries     21\n\n Response Sent/Additional Information Requested                 47\n\n No Action Needed                                               96\n\n\n\n\n                                           103\n\x0c\x0cTable 6\nReferences to Reporting Requirements\nof the Inspector General Act\n\n The Inspector General Act of 1978, as amended, specifies reporting requirements for\n semiannual reports to Congress. The requirements are listed below and indexed to the\n applicable pages.\n\n\n\n     Section         INSPECTOR GENERAL ACT REPORTING REQUIREMENT                      PAGES\n      4(a)(2)     Review of Legislation and Regulations                               81-83\n\n      5(a)(1)     Significant Problems, Abuses, and Deficiencies                      13-18,\n                                                                                      24-44,\n                                                                                      48-76\n      5(a)(2)     Recommendations for Corrective Action                               24-44,\n                                                                                      48-76\n      5(a)(3)     Prior Recommendations Not Yet Implemented                           91-99\n\n      5(a)(4)     Matters Referred to Prosecutive Authorities                         48-76,\n                                                                                       101\n      5(a)(5)     Summary of Instances Where Information Was Unreasonably              85\n                  Refused or Not Provided\n      5(a)(6)     List of OIG Audit and Evaluation Reports Issued During the Period    87\n\n      5(a)(7)     Summary of Significant Reports Issued During the Period             24-44,\n                                                                                      48-76\n      5(a)(8)     Statistical Table on Management Decisions with Respect to            89\n                  Questioned Costs\n      5(a)(9)     Statistical Table on Management Decisions on Recommendations         89\n                  That Funds Be Put To Better Use\n      5(a)(10)    Summary of Each Audit, Inspection or Evaluation Report Over Six      85\n                  Months Old for Which No Management Decision Has Been Made\n      5(a)(11)    Significant Revised Management Decisions                             85\n\n      5(a)(12)    Significant Management Decisions with Which the Inspector            85\n                  General Disagreed\n      5(a)(14)    Appendix of Peer Reviews Conducted by Another OIG                    107\n      5(a)(15)    List of Outstanding Peer Review Recommendations Not Fully            107\n                  Implemented\n      5(a)(16)    List of Peer Reviews Conducted of Another OIG                        107\n\n\n\n\n                                         105\n\x0c\x0cU.S. Securities and Exchange Commission\n\n                                                                            SEMIANNUAL\n                                                                            REPORT TO\n                                                                            CONGRESS\n                                                Office of\n                                               Inspector\n                                                General\n\n\n\n\n                                          Appendix A: Peer Reviews of OIG Operations............................................................107\n                                                          Peer Review of National Credit Union Administration\xe2\x80\x99s Office of\n                                                            Inspector General ...........................................................................................107\n                                                          Peer Review of the SEC OIG\xe2\x80\x99s Audit Operations by the Corporation\n                                                            for Public Broadcasting OIG ............................................................................107\n                                                          Peer Review of the SEC OIG\xe2\x80\x99s Investigative Operations by U.S. Equal\n                                                            Employment Opportunity Commission OIG .....................................................107\n\n                                          Appendix B: Testimony of H. David Kotz, Inspector General of\n                                                      the Securities and Exchange Commission, Before the\n                                                      United States Senate Committee on Banking,\n                                                      Housing and Urban Affairs......................................................................109\n\n                                          Appendix C: Testimony of H. David Kotz, Inspector General of the\n                                                      Securities and Exchange Commission, Before the\n                                                      Financial Crisis Inquiry Commission .......................................................121\n\x0c\x0c                                                                            APPENDIX A\n\nPEER REVIEWS OF OIG OPERATIONS\n\nPEER REVIEW OF THE NATIONAL CREDIT UNION ADMINISTRATION OIG\xe2\x80\x99S AUDIT\nOPERATIONS\n\n        During the semiannual reporting period, the SEC OIG completed an external peer review\nof the audit activities of the National Credit Union Administration (NCUA) OIG. Based on our\nrisk assessments, we selected for review audits conducted under generally accepted government\nauditing standards by the NCUA OIG that were completed during the period from April 1, 2008\nto October 30, 2009. In our opinion, the system of quality control for the audit organization of\nthe NCUA OIG in effect for the period ended October 30, 2009, was suitably designed and\ncomplied with to provide the NCUA OIG with reasonable assurance of performing and reporting\nin conformity with applicable professional standards in all material respects. There are no\noutstanding recommendations in connection with the peer review and the SEC OIG\xe2\x80\x99s report of\nthe NCUA OIG\xe2\x80\x99s audit operations is available on our website at http://www.sec-\noig.gov/Reports/AuditsInspections/2010/478.pdf.\n\n\nPEER REVIEW OF THE SEC OIG\xe2\x80\x99S AUDIT OPERATIONS\n\n        During the semiannual reporting period, the SEC OIG did not have an external peer\nreview conducted of its audit operations. Peer reviews of OIG audit operations are required to be\nconducted every three years. The most recent peer review of the SEC OIG\xe2\x80\x99s audit operations\nwas conducted by the Corporation for Public Broadcasting (CPB) OIG. The CPB OIG issued its\nreport on the SEC OIG\xe2\x80\x99s audit operations in January 2010. This report concluded that the SEC\nOIG\xe2\x80\x99s system of quality for its audit function was designed to meet the requirements of the\nquality control standards established by the U.S. Comptroller General in all material respects.\nThe report is available on our website at http://www.sec-\noig.gov/Reports/Other/CPB_PeerReviewSEC.pdf.\n\n\nPEER REVIEW OF THE SEC OIG\xe2\x80\x99S INVESTIGATIVE OPERATIONS\n\n        During the semiannual reporting period, the SEC OIG did not have an external peer\nreview of its investigative operations. Peer reviews of Designated Federal Entity OIGs, such as\nthe SEC OIG, are conducted on a voluntary basis. The most recent peer review of the SEC\nOIG\xe2\x80\x99s investigative operations was conducted by the U.S. Equal Employment Opportunity\nCommission (EEOC) OIG. The EEOC OIG issued its report on the SEC OIG\xe2\x80\x99s investigative\noperations in July 2007. This report concluded that the SEC OIG\xe2\x80\x99s system of quality for the\ninvestigative function conformed to the professional standards established by the President\xe2\x80\x99s\nCouncil on Integrity & Efficiency and the Executive Council on Integrity & Efficiency (now the\nCouncil of the Inspectors General on Integrity & Efficiency).\n\n\n\n\n                                              107\n\x0c\x0c                                        APPENDIX B\n\n\n\n\n      Written Testimony of H. David Kotz\n            Inspector General of the\n      Securities and Exchange Commission\n\n\n\n\n             Before the U.S. Senate\nCommittee on Banking, Housing and Urban Affairs\n\n        Wednesday, September 22, 2010\n                 10:00 a.m.\n\n\n\n                      109\n\x0c                                           Introduction\n\n        Thank you for the opportunity to testify before this Committee on the subject of\n\xe2\x80\x9cOversight of the SEC\xe2\x80\x99s Inspector General\xe2\x80\x99s Report on the \xe2\x80\x98Investigation of the SEC\xe2\x80\x99s Response\nto Concerns Regarding Robert Allen Stanford\xe2\x80\x99s Alleged Ponzi Scheme\xe2\x80\x99 and Improving SEC\nPerformance.\xe2\x80\x9d I appreciate the interest of the Chairman, the Ranking Member, as well as the\nother members of the Committee, in the Securities and Exchange Commission (SEC or\nCommission) and the Office of Inspector General (OIG). In my testimony, I am representing the\nOIG, and the views that I express are those of my Office, and do not necessarily reflect the views\nof the Commission or any Commissioners.\n\n        I would like to begin my remarks by briefly discussing the role of my Office and the\noversight efforts we have undertaken during the past few years. The mission of the Office of\nInspector General is to promote the integrity, efficiency and effectiveness of the critical\nprograms and operations of the SEC. The SEC Office of Inspector General includes the\npositions of the Inspector General, Deputy Inspector General, Counsel to the Inspector General,\nand has staff in two major areas: Audits and Investigations.\n\n        Our audit unit conducts, coordinates and supervises independent audits and evaluations\nrelated to the Commission\xe2\x80\x99s internal programs and operations. The primary purpose of\nconducting an audit is to review past events with a view toward ensuring compliance with\napplicable laws, rules and regulations and improving future performance. Upon completion of\nan audit or evaluation, the OIG issues an independent report that identifies any deficiencies in\nCommission operations, programs, activities or functions and makes recommendations for\nimprovements in existing controls and procedures.\n\n        The Office\xe2\x80\x99s investigations unit responds to allegations of violations of statutes, rules and\nregulations, and other misconduct by Commission staff and contractors. We carefully review\nand analyze the complaints we receive and, if warranted, conduct a preliminary inquiry or full\ninvestigation into a matter. The misconduct investigated ranges from fraud and other types of\ncriminal conduct to violations of Commission rules and policies and the Government-wide\nconduct standards. The investigations unit conducts thorough and independent investigations\ninto allegations received in accordance with the applicable Quality Standards for Investigations.\nWhere allegations of criminal conduct are involved, we notify and work with the Department of\nJustice and the Federal Bureau of Investigation as appropriate.\n\n                                          Audit Reports\n\n        Over the past 2! years since I became the Inspector General of the SEC, our audit unit\nhas issued numerous reports involving matters critical to SEC programs and operations and the\ninvesting public. These have included an examination of the Commission\xe2\x80\x99s oversight of Bear\nStearns and the factors that led to its collapse, an audit of the SEC Division of Enforcement\xe2\x80\x99s\n(Enforcement\xe2\x80\x99s) practices related to naked short selling complaints and referrals, a review of the\nSEC\xe2\x80\x99s bounty program for whistleblowers, and an analysis of the SEC\xe2\x80\x99s oversight of credit\nrating agencies. In addition, following a comprehensive investigative report related to the\nMadoff Ponzi scheme in which our Office identified systematic breakdowns in the manner in\n\n                                                110\n\x0cwhich the SEC conducted its examinations and investigations (discussed in more detail below),\nwe performed three comprehensive reviews providing the SEC with 69 specific and concrete\nrecommendations to improve the operations of both Enforcement and the Office of Compliance\nInspections and Examinations (OCIE).\n\n                                      Investigative Reports\n\n        The Office\xe2\x80\x99s investigations unit has also conducted numerous comprehensive\ninvestigations into significant failures by the SEC in accomplishing its regulatory mission, as\nwell as investigations of allegations of violations of statutes, rules and regulations, and other\nmisconduct by Commission staff members and contractors. Several of these investigations\ninvolved senior-level Commission staff and represent matters of great concern to the\nCommission, Congressional officials and the general public. Where appropriate, we have\nreported evidence of improper conduct and made recommendations for disciplinary actions,\nincluding removal of employees from the Federal service, as well as recommendations for\nimprovements in agency policies, procedures and practices.\n\n        Specifically, we have issued investigative reports regarding a myriad of allegations,\nincluding claims of failures by Enforcement to pursue investigations vigorously or in a timely\nmanner, improper securities trading by Commission employees, conflicts of interest by\nCommission staff members, unauthorized disclosure of non-public information, whistleblower\nallegations of contract fraud, preferential treatment given to prominent persons, retaliatory\ntermination, perjury by supervisory Commission attorneys, failure of SEC attorneys to maintain\nactive bar status, falsification of federal documents, and the misuse of official position,\ngovernment resources and official time. In August 2009, we issued a 457-page report of\ninvestigation analyzing the reasons why the SEC failed to uncover Bernard Madoff\xe2\x80\x99s $50 billion\nPonzi scheme. More recently, we issued a thorough and comprehensive report of investigation\nregarding the history of the SEC\xe2\x80\x99s examinations and investigations of Robert Allen Stanford\xe2\x80\x99s\n(Stanford\xe2\x80\x99s) $8 billion alleged Ponzi scheme, which report is discussed in detail below and is the\nsubject of this hearing.\n                             Commencement of Stanford Investigation\n\n        On October 9, 2009, I received a letter from the Ranking Member of this Committee, the\nHonorable Richard Shelby, and the Honorable David Vitter requesting a comprehensive\ninvestigation of the handling of the SEC\xe2\x80\x99s investigation into Robert Allen Stanford and his\nvarious companies, including the history of all the SEC\xe2\x80\x99s investigations and examinations\nregarding Stanford. On October 13, 2009, the OIG opened our investigation into the Stanford\nmatter.\n\n                                  Document and E-mail Review\n\n        Between October 13, 2009 and February 16, 2010, the OIG investigative team made\nnumerous requests to the SEC\xe2\x80\x99s Office of Information Technology (OIT) for the e-mails of\ncurrent and former SEC employees for various periods of time pertinent to the investigation.\nThe e-mails were received, loaded onto computers with specialized search tools and searched on\na continuous basis throughout the course of our investigation.\n\n                                                111\n\x0c       In all, OIT provided e-mails for a total of 42 current and former SEC employees for\nvarious time periods pertinent to the investigation, ranging from 1997 to 2009. We estimate that\nwe obtained and searched over 2.7 million e-mails during the course of the investigation.\n\n        On October 27, 2009, we sent comprehensive document requests to both Enforcement\nand OCIE specifying the documents and records we required to be produced for the\ninvestigation. We carefully reviewed and analyzed the information we received as a result of our\ndocument production requests. These documents included all records relating to the SEC\xe2\x80\x99s Fort\nWorth office\xe2\x80\x99s examinations in 1997 of Stanford Group Company\xe2\x80\x99s Broker-Dealer, in 1998 of\nStanford Group Company\xe2\x80\x99s Investment Advisor, in 2002 of Stanford Group Company\xe2\x80\x99s\nInvestment Advisor, and in 2004 of Stanford Group Company\xe2\x80\x99s Broker-Dealer. These also\nincluded investigative records relating to the Fort Worth office\xe2\x80\x99s 1998 inquiry regarding Stanford\nGroup Company and its investigation of Stanford Group Company, which was opened in 2006.\n\n       We also sought and reviewed documents from the Financial Industry Regulatory\nAuthority (FINRA), including documents concerning communications between FINRA or its\npredecessor, the National Association of Securities Dealers (NASD), and the SEC concerning\nStanford, and FINRA documents pertaining to the SEC\xe2\x80\x99s examinations and inquiries regarding\nStanford.\n\n                                   Testimony and Interviews\n\n        The OIG conducted 51 testimonies and interviews of 48 individuals with knowledge of\nfacts or circumstances surrounding the SEC\xe2\x80\x99s examinations and/or investigations of Stanford and\nhis firms. I personally led the questioning in the testimony and interviews of the witnesses in\nthis investigation.\n\n       Specifically, we conducted on-the-record and under oath testimony of 28 individuals,\nincluding all of the relevant examiners and investigators who worked on SEC matters relating to\nStanford. We also conducted interviews of 20 other witnesses, including former SEC\nemployees, whistleblowers, victims of the alleged Ponzi scheme, and officials from the Texas\nState Securities Board.\n\n                     Issuance of Comprehensive Report of Investigation\n\n         On March 31, 2010, we issued to the Chairman of the SEC a comprehensive report of our\ninvestigation in the Stanford matter containing over 150 pages of analysis and 200 exhibits. The\nreport of investigation detailed all of the SEC\xe2\x80\x99s examinations and investigations of Stanford from\n1997 through 2009 and the agency\xe2\x80\x99s response to all complaints it received regarding the\nactivities of Stanford\xe2\x80\x99s companies, tracing the path of these complaints through the Commission\nfrom their inception and reviewing what, if any, investigative or examination work was\nconducted with respect to the allegations in the complaints.\n\n\n\n\n                                               112\n\x0c                          Results of the OIG\xe2\x80\x99s Stanford Investigation\n\n        The OIG\xe2\x80\x99s investigation determined that the SEC\xe2\x80\x99s Fort Worth office was aware since\n1997 that Robert Allen Stanford was likely operating a Ponzi scheme, having come to that\nconclusion a mere two years after Stanford Group Company, Stanford\xe2\x80\x99s investment adviser,\nregistered with the SEC in 1995. We found that over the next eight years, the SEC\xe2\x80\x99s Fort Worth\nExamination group conducted four examinations of Stanford\xe2\x80\x99s operations, finding in each\nexamination that the certificates of deposit (CDs) Stanford was promoting could not have been\n\xe2\x80\x9clegitimate,\xe2\x80\x9d and that it was \xe2\x80\x9chighly unlikely\xe2\x80\x9d that the returns Stanford claimed to generate could\nhave been achieved with the purported conservative investment approach utilized. The SEC\xe2\x80\x99s\nFort Worth examiners conducted examinations of Stanford in 1997, 1998, 2002 and 2004,\nconcluding in each instance that Stanford\xe2\x80\x99s CDs were likely a Ponzi scheme or similar fraudulent\nscheme. The only significant difference in the examination group\xe2\x80\x99s findings over the years was\nthat the potential fraud was growing exponentially, from $250 million to $1.5 billion.\n\n        The first SEC examination occurred in 1997, just two years after Stanford Group\nCompany began operations. After reviewing Stanford Group Company\xe2\x80\x99s annual audited\nfinancial statements in 1997, a former branch chief in the Fort Worth Broker-Dealer Examination\ngroup stated that, based simply on her review of the financial statements, she \xe2\x80\x9cbecame very\nconcerned\xe2\x80\x9d about the \xe2\x80\x9cextraordinary revenue\xe2\x80\x9d from the CDs and immediately suspected the CD\nsales were fraudulent. In August 1997, after just six days of field work in an examination of\nStanford, the examiners concluded that Stanford International Bank\xe2\x80\x99s statements promoting the\nCDs appeared to be misrepresentations. The examiners noted that while the CD products were\npromoted as being safe and secure, with investments in \xe2\x80\x9cinvestment-grade bonds,\xe2\x80\x9d the interest\nrate, combined with referral fees of between 11% and 13.75% annually, was simply too high to\nbe achieved through the purported low-risk investments.\n\n        The branch chief concluded after the 1997 examination was finished that the CDs\ndeclared above-market returns were \xe2\x80\x9cabsolutely ludicrous\xe2\x80\x9d and that the high referral fees paid for\nselling the CDs indicated that they were not \xe2\x80\x9clegitimate CDs.\xe2\x80\x9d The Assistant District\nAdministrator for the Fort Worth Examination program concurred, noting that there were \xe2\x80\x9cred\nflags\xe2\x80\x9d about Stanford\xe2\x80\x99s operations that caused her to believe Stanford Group Company was\noperating a Ponzi scheme, specifically noting the fact that the interest being paid on these CDs\n\xe2\x80\x9cwas significantly higher than what you could get on a CD in the United States.\xe2\x80\x9d She further\nconcluded that it was \xe2\x80\x9chighly unlikely\xe2\x80\x9d that the returns Stanford claimed to generate could be\nachieved with the conservative investment approach Stanford claimed to be using.\n\n         In the SEC\xe2\x80\x99s internal tracking database, where it recorded information about its\nexaminations, the Broker-Dealer Examination group characterized its conclusion from the 1997\nexamination of Stanford Group Company as \xe2\x80\x9cPossible misrepresentations. Possible Ponzi\nscheme.\xe2\x80\x9d Our investigation found that in 1997, the examination staff determined, as a result of\ntheir findings, that an investigation of Stanford by the Fort Worth Enforcement group was\nwarranted, and referred a copy of their examination report to the Enforcement group for review\nand disposition. In fact, when the former Assistant District Administrator for the Fort Worth\nExamination program retired in 1997, her \xe2\x80\x9cparting words\xe2\x80\x9d to the aforementioned branch chief\n\n\n\n                                               113\n\x0cwere to \xe2\x80\x9ckeep your eye on these people [referring to Stanford] because this looks like a Ponzi\nscheme to me and some day it\xe2\x80\x99s going to blow up.\xe2\x80\x9d\n\n        We also found that in June 1998, the Investment Adviser Examination group in Fort\nWorth began another examination of Stanford Group Company. This Investment Adviser\nexamination arrived at the same conclusions that the broker-dealer examination had reached.\nThe Investment Adviser examiners found very suspicious Stanford\xe2\x80\x99s \xe2\x80\x9cextremely high interest\nrates and extremely generous compensation\xe2\x80\x9d in the form of annual recurring referral fees, as well\nas the fact that Stanford Group Company was so \xe2\x80\x9cextremely dependent upon that compensation\nto conduct its day-to-day operations.\xe2\x80\x9d\n\n       In November 2002, the SEC\xe2\x80\x99s Investment Adviser Examination group conducted yet\nanother examination of Stanford Group Company. In this examination, the staff identified the\nsame red flags that had been noted in the previous two examinations, including the fact that \xe2\x80\x9cthe\nconsistent, above-market reported returns\xe2\x80\x9d were \xe2\x80\x9cvery unlikely\xe2\x80\x9d to be able to be achieved with\nStanford\xe2\x80\x99s investments.\n\n       The Investment Adviser examiners also found that the list of investors provided by\nStanford Group Company was inaccurate, as the list they received of the CD holders was\ninconsistent with the total CDs outstanding based upon referral fees. The examiners noted that\nalthough they did follow up with Stanford Group Company about this discrepancy, they never\nobtained \xe2\x80\x9ca satisfactory response, and a full list of investors.\xe2\x80\x9d\n\n        After the examiners began this third examination of Stanford, the SEC received multiple\ncomplaints from outside entities reinforcing and bolstering the examiners\xe2\x80\x99 suspicions about\nStanford\xe2\x80\x99s operations. However, the SEC failed to follow up on these complaints or take any\naction to investigate them. On December 5, 2002, the SEC received a complaint from a citizen\nof Mexico, who raised the same concerns the examination staff had raised. While the examiners\ncharacterized the concerns expressed in this complaint as \xe2\x80\x9clegitimate,\xe2\x80\x9d we found that the SEC\ndid not respond to the complaint and did not take any action to investigate the claims made\ntherein.\n\n       In 2003, the SEC Enforcement staff received two new complaints that Stanford was a\nPonzi scheme, but we found that nothing was done to pursue either of them. On August 4, 2003,\nthe SEC was forwarded a letter that discussed several similarities between a known Ponzi\nscheme and Stanford\xe2\x80\x99s operations. Then, on October 10, 2003, the NASD forwarded a letter\ndated September 1, 2003, from an anonymous Stanford insider to the SEC\xe2\x80\x99s Office of Investor\nEducation and Advocacy, which stated, in pertinent part:\n\n               STANFORD FINANCIAL IS THE SUBJECT OF A\n               LINGERING CORPORATE FRAUD SCANDAL\n               PERPETUATED AS A \xe2\x80\x9cMASSIVE PONZI SCHEME\xe2\x80\x9d\n               THAT WILL DESTROY THE LIFE SAVINGS OF\n               MANY; DAMAGE THE REPUTATION OF ALL\n               ASSOCIATED PARTIES, RIDICULE SECURITIES\n\n\n\n                                               114\n\x0c               AND BANKING AUTHORITIES, AND SHAME THE\n               UNITED STATES OF AMERICA.\n\n         Our investigation found that while this letter was minimally reviewed by various\nEnforcement staff, the Enforcement group decided not to open an investigation or even an\ninquiry into the complaint. The Enforcement branch chief responsible for the decision explained\nhis rationale as follows:\n\n               [R]ather than spend a lot of resources on something that\n               could end up being something that we could not bring, the\n               decision was made to \xe2\x80\x93 to not go forward at that time, or at\n               least to \xe2\x80\x93 to not spend the significant resources and \xe2\x80\x93 and\n               wait and see if something else would come up.\n\n        In October 2004, the Fort Worth Examination staff conducted a fourth examination of\nStanford Group Company. The examiners once again analyzed the CD returns using data about\nthe past performance of the equity markets and concluded that Stanford Group Company\xe2\x80\x99s sales\nof the CDs violated numerous federal securities laws.\n\n        While the Fort Worth Examination group made multiple efforts after each examination of\nStanford Group Company to convince the Enforcement group to open and conduct an\ninvestigation of Stanford, we found that the Enforcement group made no meaningful effort to\ninvestigate the potential fraud or to consider an action to attempt to stop it until late 2005. In\n1998, the Enforcement group opened a brief inquiry, but then closed it after only three months,\nwhen Stanford failed to produce documents evidencing fraud in response to a voluntary\ndocument request. In 2002, no investigation was opened even after the examiners specifically\nidentified in an examination report multiple violations of securities laws by Stanford. In 2003,\nafter receiving the three separate complaints about Stanford\xe2\x80\x99s operations, the Enforcement group\ndecided not to open up an investigation or even an inquiry, and did not follow up to obtain more\ninformation about the complaints.\n\n         In late 2005, after a change in leadership in the Enforcement group and in response to the\ncontinuing pleas by the Fort Worth examiners, who had been watching the potential fraud grow\nin examination after examination, the Enforcement group finally agreed to seek a formal order\nfrom the Commission to investigate Stanford. However, even at that time, the Enforcement\ngroup missed an opportunity to have the SEC bring an action against Stanford Group Company\nfor its admitted failure to conduct any due diligence regarding Stanford\xe2\x80\x99s investment portfolio.\nSuch an action could have potentially halted the sales of the Stanford International Bank CDs\nthough the Stanford Group Company investment adviser, and would have provided investors and\nprospective investors with notice that the SEC considered Stanford Group Company\xe2\x80\x99s sales of\nthe CDs to be fraudulent. We found that this particular action was not considered, partially\nbecause the new head of the Enforcement group in Fort Worth was not aware of the findings of\nthe Investment Adviser group\xe2\x80\x99s examinations in 1998 and 2002, or even that Stanford Group\nCompany had registered as an investment adviser, a fact she learned for the first time in the\ncourse of our investigation in January 2010.\n\n\n\n                                               115\n\x0c         We did not find that the reluctance on the part of the SEC\xe2\x80\x99s Fort Worth Enforcement\ngroup to investigate Stanford was related to any improper professional, social or financial\nrelationship on the part of any current or former SEC employee. We found evidence, however,\nthat SEC-wide institutional influence did factor into the Enforcement group\xe2\x80\x99s repeated decisions\nnot to undertake a full and thorough investigation of Stanford, notwithstanding staff awareness\nthat the potential fraud was growing. We found that senior Fort Worth officials perceived that\nthey were being judged on the numbers of cases they brought, so-called \xe2\x80\x9cstats,\xe2\x80\x9d and\ncommunicated to the Enforcement staff that novel or complex cases were disfavored. As a\nresult, cases like Stanford, which were not considered \xe2\x80\x9cquick-hit\xe2\x80\x9d or slam-dunk\xe2\x80\x9d cases, were not\nencouraged.\n\n        We also found that a former head of Enforcement in Fort Worth, who played a significant\nrole in multiple decisions over the years to quash investigations of Stanford, sought to represent\nStanford on three separate occasions after he left the Commission, and in fact, represented\nStanford briefly in 2006 before he was informed by the SEC Ethics Office that it was improper\nfor him to do so.\n\n         Our investigation revealed that this individual while working at the SEC was responsible\nfor decisions: (1) in 1998 to close an inquiry opened regarding Stanford after the 1997\nexamination; (2) in 2002, in lieu of responding to a complaint or investigating the issues it raised,\nto forward it to the Texas State Securities Board; (3) also in 2002, not to act on the Examination\nstaff\xe2\x80\x99s referral of Stanford for investigation after its Investment Adviser examination; (4) in\n2003, not to investigate Stanford after a complaint was received comparing Stanford\xe2\x80\x99s operations\nto a known fraud; (5) in 2003, not to investigate Stanford after receiving a complaint from an\nanonymous insider alleging that Stanford was engaged in a \xe2\x80\x9cmassive Ponzi scheme;\xe2\x80\x9d and (6) in\n2005, to summarily inform senior Examination staff after a presentation was made on Stanford at\na quarterly summit meeting that Stanford was not a matter they planned to investigate.\n\n        Yet, in June 2005, a mere two months after leaving the SEC, this former head of the\nEnforcement group in Fort Worth e-mailed the SEC Ethics Office that he had been \xe2\x80\x9capproached\nabout representing [Stanford] . . . in connection with (what appears to be) a preliminary inquiry\nby the Fort Worth office.\xe2\x80\x9d He further stated, \xe2\x80\x9cI am not aware of any conflicts and I do not\nremember any matters pending on Stanford while I was at the Commission.\xe2\x80\x9d\n\n        After the SEC Ethics Office denied the former head of Enforcement in Fort Worth\xe2\x80\x99s June\n2005 request, in September 2006, Stanford retained this individual to assist with inquiries\nStanford was receiving from regulatory authorities, including the SEC. The former head of\nEnforcement in Fort Worth met with Stanford Financial Group\xe2\x80\x99s General Counsel in Stanford\xe2\x80\x99s\nMiami office and billed Stanford for his time on this representation. In late November 2006, he\ncalled his former subordinate, the Assistant Director working on the Stanford matter in Fort\nWorth, who asked him during the conversation, \xe2\x80\x9c[C]an you work on this?,\xe2\x80\x9d and in fact told him,\n\xe2\x80\x9cI\xe2\x80\x99m not sure you\xe2\x80\x99re able to work on this.\xe2\x80\x9d After this call, the former head of Enforcement in\nFort Worth belatedly sought permission from the SEC\xe2\x80\x99s Ethics Office to represent Stanford. The\nSEC Ethics Office replied that he could not represent Stanford for the same reasons given a year\nearlier and he discontinued his representation.\n\n\n\n                                                116\n\x0c        In February 2009, immediately after the SEC sued Stanford, this same former head of\nEnforcement in Fort Worth contacted the SEC Ethics Office a third time about representing\nStanford in connection with the SEC matter \xe2\x80\x93 this time to defend Stanford against the lawsuit\nfiled by the SEC. An SEC Ethics official testified that he could not recall another instance in\nwhich a former SEC employee contacted the Ethics Office on three separate occasions trying to\nrepresent a client in the same matter. After the SEC Ethics Office informed the former head of\nEnforcement in Fort Worth for a third time that he could not represent Stanford, he became upset\nwith the decision, arguing that the matter pending in 2009 \xe2\x80\x9cwas new and was different and\nunrelated to the matter that had occurred before he left.\xe2\x80\x9d When asked during our investigation\nwhy he was so insistent on representing Stanford, he replied, \xe2\x80\x9cEvery lawyer in Texas and beyond\nis going to get rich over this case. Okay? And I hated being on the sidelines.\xe2\x80\x9d\n\n        Based upon this evidence, our investigation determined that the former head of\nEnforcement in Fort Worth\xe2\x80\x99s representation of Stanford appeared to violate state bar rules that\nprohibit a former government employee from working on matters in which that individual\nparticipated as a government employee.\n\n        In summary, our report of investigation concluded overall that the SEC\xe2\x80\x99s Fort Worth\noffice was aware since 1997 that Stanford was likely operating a Ponzi scheme after conducting\nexamination after examination for a period of eight years, but merely watched the alleged fraud\ngrow, and failed to take any action to stop it.\n\n              Recommendations of the OIG\xe2\x80\x99s Stanford Report of Investigation\n\n        We provided our Report of Investigation on the SEC\xe2\x80\x99s handing of the Stanford matter to\nthe Chairman of the SEC on March 31, 2010. We recommended that the Chairman carefully\nreview the Report\xe2\x80\x99s findings and share with Enforcement management the portions of the Report\nthat related to the performance failures by those employees who still work at the SEC, so that\nappropriate action (which may include performance-based action, if applicable) would be taken,\non an employee-by-employee basis, to ensure that future decisions about when to open an\ninvestigation and when to recommend that the Commission take action are made in a more\nappropriate and timely manner.\n\n        We also made numerous recommendations to improve the operations of several divisions\nand offices within the SEC. Specifically, we recommended that:\n\n         (1)     Enforcement ensure that the potential harm to investors if no action is taken is\nconsidered as a factor when deciding whether to recommend an enforcement action, including\nconsideration of whether this factor, in certain situations, outweighs other factors such as\nlitigation risk;\n\n       (2)     Enforcement emphasize the significance of bringing cases that are difficult, but\nimportant to the protection of investors, in evaluating the performance of an Enforcement staff\nmember or a regional office;\n\n\n\n\n                                                117\n\x0c        (3)     Enforcement consider the significance of the presence or absence of U.S.\ninvestors in determining whether to open an investigation or recommend an enforcement action\nthat otherwise meets jurisdictional requirements;\n\n        (4)     There be improved coordination between the Enforcement and OCIE on\ninvestigations, particularly those investigations initiated by an OCIE referral to Enforcement;\n\n        (5)     Enforcement re-evaluate the factors utilized to determine when referral of a\nmatter to state securities regulators, in lieu of an SEC investigation, is appropriate;\n\n       (6)    There be additional training of Enforcement staff to strengthen their\nunderstanding of the laws governing broker-dealers and investment advisers; and\n\n        (7)    Enforcement emphasize the need to coordinate with the Office of International\nAffairs and the Division of Risk, Strategy, and Financial Innovation, as appropriate, early in the\ncourse of investigations.\n\n        We also referred our Report of Investigation to the Commission\xe2\x80\x99s Ethics Counsel for\nreferral to the Bar Counsel offices in the two states in which the former Head of Enforcement in\nFort Worth was admitted to practice law.\n\n                                Follow-up on Recommendations\n\n        My Office is committed to following up with respect to all of the recommendations made\nin our Stanford report to ensure that appropriate changes and improvements are made in the\nSEC\xe2\x80\x99s operations as a result of our findings. We are aware that many improvements have\nalready been undertaken under the direction of Chairman Schapiro and Enforcement Director\nKhuzami as a result of the findings and many recommendations we made as a result of our\nMadoff investigation. We note that Enforcement has indicated that it has taken action on the\nrecommendations of our Stanford report, and we are in the process of reviewing those actions to\nensure that they are adequate and fully address the OIG\xe2\x80\x99s concerns. We are confident that under\nChairman Schapiro\xe2\x80\x99s leadership, the SEC will carefully take the appropriate steps to implement\nfully our Stanford recommendations and ensure that fundamental changes are made in the SEC\xe2\x80\x99s\noperations so that the errors and failings we found in our investigation are properly remedied and\nnot repeated in the future.\n\n                         Similarities to Failures in the Madoff Matter\n\n        While my Office has not conducted any formal analysis of similarities between the\nfindings in our Madoff and Stanford reports, we have identified some striking parallels between\nthe two situations. First, in both cases, the SEC received credible and substantive complaints\nabout possible fraud, but failed to follow up appropriately on these complaints. Second, in both\nthe Madoff and Stanford matters, the SEC had in its possession ample evidence of potential\nfraud, which should have triggered thorough and comprehensive Enforcement investigations and\nactions. Third, and most unfortunately, in both situations, prompt and effective action on the\npart of the SEC could have potentially uncovered fraud and prevented investors from losing\nbillions of dollars.\n\n                                               118\n\x0c        Our Office intends to remain vigilant to ensure that the SEC benefits from the lessons\nlearned as a result of its failures in both these cases and makes the necessary improvements to\nensure that such failures do not occur again in the future.\n\n                                           Conclusion\n\n        In conclusion, I appreciate the interest of the Chairman, the Ranking Member and the\nCommittee in the SEC and my Office and, in particular, in the facts and circumstances pertinent\nto our Stanford report. I believe that the Committee\xe2\x80\x99s and Congress\xe2\x80\x99s continued involvement\nwith the SEC is helpful to strengthen the accountability and effectiveness of the Commission.\nThank you.\n\n\n\n\n                                               119\n\x0c\x0c                                       APPENDIX C\n\n\n\n\n         Testimony of H. David Kotz\n           Inspector General of the\n     Securities and Exchange Commission\n\n\n\n\nBefore the Financial Crisis Inquiry Commission\n\n           Wednesday May 5, 2010\n\n\n\n\n                     121\n\x0c                                           Introduction\n\n        Thank you for the opportunity to testify today before this Commission on the subject of\nthe implementation of the Securities and Exchange Commission\xe2\x80\x99s (SEC\xe2\x80\x99s or Commission\xe2\x80\x99s)\nConsolidated Supervised Entities (CSE) program and the adequacy of the SEC\xe2\x80\x99s oversight of\nThe Bear Stearns Companies, Inc. (Bear Stearns) and other CSE program participants. I\nappreciate the interest in the SEC and the Office of Inspector General (OIG). In my testimony\ntoday, I am representing the OIG, and the views that I express are those of my Office, and do not\nnecessarily reflect the views of the Commission or any Commissioners.\n\n         The SEC OIG\xe2\x80\x99s mission is to promote the integrity, efficiency and effectiveness of the\ncritical programs and operations of the SEC. This mission has become increasingly important in\nlight of the current economic crisis facing our nation. The SEC OIG includes the positions of the\nInspector General, Deputy Inspector General, Counsel to the Inspector General, and has staff in\ntwo major areas: Audits and Investigations.\n\n        Our audit unit conducts, coordinates and supervises independent audits and evaluations\nrelated to the Commission\xe2\x80\x99s internal programs and operations. The primary purpose of\nconducting an audit is to review past events with a view toward ensuring compliance with\napplicable laws, rules and regulations and improving future performance. Upon completion of\nan audit or evaluation, the OIG issues an independent report that identifies any deficiencies in\nCommission operations, programs, activities, or functions and makes recommendations for\nimprovements in existing controls and procedures.\n\n        The Office\xe2\x80\x99s investigations unit responds to allegations of violations of statutes, rules and\nregulations, and other misconduct by Commission staff and contractors. We carefully review\nand analyze the complaints we receive and, if warranted, conduct a preliminary inquiry or full\ninvestigation into a matter. The misconduct investigated ranges from fraud and other types of\ncriminal conduct to violations of Commission rules and policies and the Government-wide\nconduct standards. The investigations unit conducts thorough and independent investigations\ninto allegations received in accordance with the applicable Quality Standards for Investigations.\nWhere allegations of criminal conduct are involved, we notify and work with the Department of\nJustice and the Federal Bureau of Investigation as appropriate.\n\n                                      Investigative Reports\n\n        Over the past 2! years since I became the Inspector General of the SEC, my Office\xe2\x80\x99s\ninvestigative unit has conducted numerous comprehensive investigations into significant failures\nby the SEC in accomplishing its regulatory mission, as well as investigations of allegations of\nviolations of statutes, rules and regulations, and other misconduct by Commission staff members\nand contractors. Several of these investigations involved senior-level Commission staff and\nrepresent matters of great concern to the Commission, Congressional officials and the general\npublic. Where appropriate, we have reported evidence of improper conduct and made\nrecommendations for disciplinary actions, including removals from the Federal service, as well\nas recommendations for improvements in agency policies, procedures and practices.\n\n\n\n                                                122\n\x0c        Specifically, we have issued investigative reports regarding a myriad of allegations,\nincluding claims of Enforcement\xe2\x80\x99s failures to pursue investigations vigorously or in a timely\nmanner, improper securities trading by Commission employees, improper conflicts of interest by\nCommission staff members, unauthorized disclosure of non-public information, whistleblower\nallegations of contract fraud, preferential treatment given to prominent persons, retaliatory\ntermination, perjury by supervisory Commission attorneys, falsification of federal documents,\nand the misuse of official position, government resources and official time. In August 2009, we\nissued a 457-page report of investigation analyzing the reasons that the SEC failed to uncover\nBernard Madoff\xe2\x80\x99s $50 billion Ponzi scheme. More recently, we issued a thorough and\ncomprehensive report of investigation regarding the history of the SEC\xe2\x80\x99s examinations and\ninvestigations of Robert Allen Stanford\xe2\x80\x99s $8 billion alleged Ponzi scheme.\n\n                                         Audit Reports\n\n       Our audit unit has also issued numerous reports involving matters critical to SEC\noperations and the investing public. These have included audits of the Commission\xe2\x80\x99s CSE and\nbroker-dealer risk assessment programs, an audit of the Division of Enforcement\xe2\x80\x99s\n(Enforcement\xe2\x80\x99s) practices related to naked short selling complaints and referrals, a review of\nEnforcement\xe2\x80\x99s process for recommending disgorgement waivers, and an analysis of the SEC\xe2\x80\x99s\noversight of credit rating agencies. In addition, because our investigative report related to the\nMadoff Ponzi scheme identified systematic breakdowns in the manner in which the SEC\nconducted its examinations and investigations, we also performed three comprehensive reviews\nproviding the SEC with 69 specific and concrete recommendations to improve the operations of\nboth Enforcement and the Office of Compliance Inspections and Examinations (OCIE).\n\n                             Bear Stearns-Related Audit Reports\n\n        One of the most significant audit reports we have prepared to date was a comprehensive\nreport issued in September 2008, analyzing the Commission\xe2\x80\x99s oversight of the SEC\xe2\x80\x99s CSE\nprogram, through which the Commission exercised direct oversight over Bear Stearns, the\nGoldman Sachs Group, Inc. (Goldman Sachs), Morgan Stanley, Merrill Lynch & Co (\xe2\x80\x9cMerrill\nLynch\xe2\x80\x9d) and Lehman Brothers Holdings Inc. (Lehman Brothers).\n\n         The SEC initiated this audit based on a Congressional request received on April 2, 2008,\nfrom Charles E. Grassley, the Ranking Member of the United States Senate Committee on\nFinance, asking that the OIG analyze the Commission\xe2\x80\x99s oversight of CSE firms and broker-\ndealers subject to the Commission\xe2\x80\x99s risk assessment program. Specifically, Senator Grassley\xe2\x80\x99s\nletter requested a review of the Division of Trading and Market\xe2\x80\x99s (TM\xe2\x80\x99s) oversight of the five\nCSE firms, with a special emphasis on Bear Stearns, and asked that the OIG analyze how the\nCSE program was run and the adequacy of the Commission\xe2\x80\x99s monitoring of Bear Stearns. In\nresponse to this Congressional request, we conducted two separate audits: an audit of the CSE\nprogram as it related to Bear Stearns and an audit of TM\xe2\x80\x99s broker-dealer risk assessment\nprogram.\n\n\n\n\n                                               123\n\x0c                               Background of the CSE Program\n\n         In 2004, the Commission adopted rule amendments under the Securities and Exchange\nAct of 1934, which created the voluntary CSE program. This program was established to allow\nthe Commission to supervise certain broker-dealer holding companies on a consolidated basis.\nIn this capacity, the Commission\xe2\x80\x99s supervision extended beyond the registered broker-dealer to\nthe unregulated affiliates of the broker-dealer and the holding company itself.\n\n        A broker-dealer became a CSE by applying to the Commission for an exemption from the\nCommission\xe2\x80\x99s standard net capital rule, and the broker-dealer\xe2\x80\x99s ultimate holding company\nconsenting to group-wide Commission supervision, if it did not already have a principal\nregulator. By obtaining an exemption from the standard net capital rule, the CSE firms\xe2\x80\x99 broker-\ndealers were permitted to compute net capital using an alternative method.\n\n        At the time of the OIG\xe2\x80\x99s audit fieldwork, which was subsequent to Bear Stearns\xe2\x80\x99 collapse\nin March 2008, the Commission exercised direct oversight of only four CSE firms: Goldman\nSachs, Morgan Stanley, Merrill Lynch, and Lehman Brothers. On September 15, 2008, Lehman\nBrothers announced that it would file for bankruptcy protection, and the Bank of America\nannounced its agreement to acquire Merrill Lynch. Both these firms had experienced serious\nfinancial difficulties. On September 21, 2008, the Federal Reserve approved (pending a statutory\nfive-day antitrust waiting period), applications from Goldman Sachs and Morgan Stanley to\nbecome bank holding companies with the Federal Reserve as their new principal regulator.\n\n                                 The Collapse of Bear Stearns\n\n         Bear Stearns was a holding company that had two registered broker-dealers. Its main\nactivities included investment banking, securities and derivatives sales and trading, clearance,\nbrokerage and asset management. Bear Stearns was highly leveraged and had a large exposure\n(i.e., concentration of assets) in mortgage-backed securities. Bear Stearns also had less capital\nand was less diversified than several other CSE firms.\n\n        In June 2007, two hedge funds that Bear Stearns managed collapsed because of subprime\nmortgage losses. Nearly a year later, during the week of March 10, 2008, rumors began to\nspread about liquidity problems at Bear Stearns. Due to Bear Stearns\xe2\x80\x99 lenders not rolling over\nsecured financing, Bear Stearns began to face severe liquidity problems. As a result, on March\n14, 2008, JP Morgan Chase & Co. (JP Morgan) provided Bear Stearns with emergency funding.\nAccording to Congressional testimony, after the markets closed on March 14, 2008, it became\napparent that the Federal Reserve Bank of New York\xe2\x80\x99s (FRBNY\xe2\x80\x99s) funding could not stop Bear\nStearns\xe2\x80\x99 downward spiral. On March 16, 2008, it was announced that Bear Stearns would be\nsold to JP Morgan, with financing support coming from the FRBNY. In May 2008, the sale of\nBear Stearns was completed.\n\n                                  Audit Objectives and Work\n\n       The Congressional request the OIG received on April 2, 2008, noted that TM was\nresponsible for regulating the largest broker-dealers and their associated holding companies and\n\n                                               124\n\x0crequested a review of TM\xe2\x80\x99s oversight of the five CSE firms it directly oversaw, with a special\nemphasis on Bear Stearns. The request further called for the OIG to analyze how the CSE\nprogram was run, to examine the adequacy of the Commission\xe2\x80\x99s monitoring of Bear Stearns, and\nto make recommendations to improve the Commission\xe2\x80\x99s CSE program. The audit\xe2\x80\x99s objectives\nwere to evaluate the Commission\xe2\x80\x99s CSE program, emphasizing the Commission\xe2\x80\x99s oversight of\nBear Stearns and determine whether improvements were needed in the Commission\xe2\x80\x99s monitoring\nof CSE firms and its administration of the CSE program.\n\n        The audit was not intended to be a complete assessment of the multitude of events that\nled to Bear Stearns\xe2\x80\x99 collapse and, accordingly, did not purport to demonstrate any specific or\ndirect connection between the failure of the CSE program\xe2\x80\x99s oversight of Bear Stearns and Bear\nStearns\xe2\x80\x99 collapse.\n\n        Given the complexity of the subject matter, we retained an expert, Albert S. (Pete) Kyle,\nto provide assistance with the audit. Professor Kyle, a faculty member at the University of\nMaryland, is a renowned expert on many aspects of capital markets, and has conducted\nsignificant research on numerous finance-related matters. He served as a staff member of the\nPresidential Task Force on Market Mechanisms (the Brady Commission) after the stock market\ncrash of 1987 and has worked as a consultant on financial topics for several government\nagencies.\n\n                                         Audit Findings\n\n        The OIG\xe2\x80\x99s audit identified significant deficiencies in the CSE program that warranted\nimprovement. The CSE program\xe2\x80\x99s mission, as it was described on the SEC\xe2\x80\x99s website, provided\nin pertinent part:\n\n               The regime is intended to allow the Commission to monitor\n               for, and act quickly in response to, financial or operational\n               weakness in a CSE holding company or its unregulated\n               affiliates that might place regulated entities, including US\n               and foreign-registered banks and broker-dealers, or the\n               broader financial system at risk. [Emphasis added]\n\n       The audit found that the CSE program failed to carry out its mission in its oversight of\nBear Stearns because, under the Commission and the CSE program\xe2\x80\x99s watch, Bear Stearns\nsuffered significant financial weaknesses and the FRBNY needed to intervene during the week\nof March 10, 2008, to prevent significant harm to the broader financial system.\n\n        Overall, the audit found that there were significant questions about the adequacy of a\nnumber of the CSE program\xe2\x80\x99s requirements, given that Bear Stearns was compliant with several\nof these requirements, but nonetheless collapsed. In addition, the audit found that prior to Bear\nStearns\xe2\x80\x99 collapse, TM became aware of numerous potential red flags regarding Bear Stearns\xe2\x80\x99\nconcentration of mortgage securities, high leverage, shortcomings of risk management in\nmortgage-backed securities and the lack of compliance with the spirit of certain Basel II\n\n\n\n                                               125\n\x0cstandards (i.e., international standards for banking supervision), but did not take actions to limit\nthese risk factors.\n\n       The audit further found that procedures and processes were not strictly followed. For\nexample, the Commission issued an order that approved Bear Stearns to become a CSE prior to\nthe completion of the inspection process. Further, the SEC\xe2\x80\x99s Division of Corporation Finance\n(Corporation Finance) did not review a Bear Stearns 10-K filing in a timely manner.\n\n      The audit also identified numerous specific concerns with the Commission\xe2\x80\x99s oversight of\nthe CSE program. Some of the concerns the audit identified included:\n\n              (a)     Bear Stearns was compliant with the CSE program\xe2\x80\x99s capital and liquidity\n       requirements; however, its collapse raised questions about the adequacy of these\n       requirements.\n\n              (b)      Although TM was aware, prior to Bear Stearns becoming a CSE firm, that\n       Bear Stearns\xe2\x80\x99 concentration of mortgage securities was increasing for several years and\n       was beyond its internal limits, and that a portion of their mortgage securities (e.g.,\n       adjustable rate mortgages) represented a significant concentration of market risk, TM did\n       not make any efforts to limit Bear Stearns\xe2\x80\x99 mortgage securities concentration.\n\n               (c)      Prior to the adoption of the rule amendments that created the CSE\n       program, the broker-dealers affiliated with the CSE firms were required either to\n       maintain a debt-to-net capital ratio of less than 15 to 1 after their first year of operation,\n       or to have net capital not less than the greater of $250,000 or two percent of aggregate\n       debit items computed in accordance with the Formula for Determination of Reserve\n       Requirements for Broker-Dealers. However, the program did not require CSE firms to\n       have a leverage ratio limit. Further, despite TM being aware that Bear Stearns\xe2\x80\x99 leverage\n       was high and some authoritative sources describing a linkage between leverage and\n       liquidity risk, TM made no efforts to require Bear Stearns to reduce its leverage.\n\n               (d)    TM was aware that the risk management of mortgages at Bear Stearns had\n       numerous shortcomings, including the lack of expertise by risk managers in mortgage-\n       backed securities at various times, the lack of timely formal review of mortgage models,\n       persistent understaffing, a proximity of risk managers to traders suggesting a lack of\n       independence, turnover of key personnel during times of crisis, and the inability or\n       unwillingness to update models to reflect changing circumstances. Notwithstanding this\n       knowledge, TM missed opportunities to push Bear Stearns aggressively to address these\n       identified concerns.\n\n                (e)     There was no documentation of discussions between TM and Bear Stearns\n       concerning scenarios involving a meltdown of mortgage market liquidity, accompanied\n       by a fundamental deterioration of the mortgages themselves. TM appeared to identify the\n       types of risks associated with these mortgages that evolved into the sub-prime mortgage\n       crisis, yet did not require Bear Stearns to reduce its exposure to sub-prime loans.\n\n\n\n                                                 126\n\x0c               (f)    Bear Stearns was not compliant with the spirit of certain Basel II standards\n       and we did not find sufficient evidence that TM required Bear Stearns to comply with\n       these standards.\n\n              (g)    TM took no actions to assess the tolerance for risk on the part of Bear\n       Stearns\xe2\x80\x99 Board of Directors and senior officials (e.g., the Chief Executive Officer),\n       although we found that this was a prudent and necessary oversight procedure.\n\n              (h)      Without an appropriate delegation of authority, TM authorized the CSE\n              firms\xe2\x80\x99 internal audit staff to perform critical audit work involving risk\n       management systems, instead of this work being performed by the firms\xe2\x80\x99 external\n       auditors, as the rule that created the CSE program required.\n\n              (i)    In June 2007, two of Bear Stearns\xe2\x80\x99 managed hedge funds collapsed.\n       Subsequent to this collapse, significant questions were raised about the lack of\n       involvement in handling the crisis by some of Bear Stearns\xe2\x80\x99 senior management officials.\n       However, TM did not reassess the communication strategy component of Bear Stearns\xe2\x80\x99\n       contingency funding plan after the collapse of the hedge funds, and very significant\n       questions were once again raised about the handling of the crisis by some of Bear\n       Stearns\xe2\x80\x99 management officials during the week of March 10, 2008.\n\n               (j)    The Commission issued four of the five orders approving firms (including\n       Bear Stearns) to use the alternative capital method, and thus become CSEs, before the\n       inspection process was completed.\n\n               (k)     Corporation Finance did not review Bear Stearns\xe2\x80\x99 most recent 10-K filing\n       in a timely manner. The effect of this untimely review was that Corporation Finance\n       deprived investors of material information that they could have used to make well-\n       informed investment decisions (i.e., whether to buy/sell Bear Stearns\xe2\x80\x99 securities). In\n       addition, the information obtained through the review process (e.g., Bear Stearns\xe2\x80\x99\n       exposure to subprime mortgages) could have been potentially beneficial to dispel the\n       rumors that led to Bear Stearns\xe2\x80\x99 collapse.\n\n                                   Audit Recommendations\n\nThe audit identified 26 recommendations intended to improve the Commission\xe2\x80\x99s oversight of the\nCSE firms.\n\nThe recommendations included, among others:\n\n              (a)      A reassessment of guidelines and rules regarding the CSE firms\xe2\x80\x99 capital\n       and liquidity levels;\n\n               (b)     Taking appropriate measures to ensure that TM adequately incorporates a\n       firm\xe2\x80\x99s concentration of securities into the CSE program\xe2\x80\x99s assessment of a firm\xe2\x80\x99s risk\n       management systems and more aggressively prompts CSE firms to take appropriate\n       actions to mitigate such risks;\n                                              127\n\x0c          (c)   A reassessment of the CSE program\xe2\x80\x99s policy regarding leverage ratio\nlimits;\n\n        (d)     Ensuring that: (1) the CSE firms have specific criteria for reviewing and\napproving models used for pricing and risk management, (2) the review and approval\nprocess conducted by the CSE firms is performed in an independent manner by the CSE\xe2\x80\x99s\nrisk management staff, (3) each CSE firm\xe2\x80\x99s model review and approval process takes\nplace in a thorough and timely manner, and (4) limits are imposed on risk taking by firms\nin areas where TM determines that risk management is not adequate;\n\n        (e)    Being more skeptical of CSE firms\xe2\x80\x99 risk models and working with\nregulated firms to help them develop additional stress scenarios that have not already\nbeen contemplated as part of the prudential regulation process;\n\n        (f)     Greater involvement on the part of TM in formulating action plans for a\nvariety of stress or disaster scenarios, even if the plans are informal;\n\n       (g)    Taking steps to ensure that mark disputes do not provide an occasion for\nCSE firms to inflate the combined capital of two firms by using inconsistent marks;\n\n       (h)      Encouraging the CSE firms to present risk management data in a useful\nmanner, which is consistent with how the CSE firms use the information internally and\nallows risk factors to be applied consistently;\n\n        (i)      Ensuring (in accordance with Basel II) that the CSEs take appropriate\ncapital deductions for illiquid assets and stressed repos, especially stressed repos where\nilliquid securities are posted as collateral;\n\n        (j)     Greater discussion of risk tolerance with the Boards of Directors and\nsenior management of CSE firms to better understand whether the actions of CSE firms\xe2\x80\x99\nstaff are consistent with the desires of the Boards of Directors and senior management;\n\n        (k)     Requiring compliance with the existing rule that requires external auditors\nto review the CSE firms\xe2\x80\x99 risk management control systems, or seek Commission\napproval in accordance with the Administrative Procedures Act for this deviation from\nthe current rule\xe2\x80\x99s requirement;\n\n       (l)     Ensuring that reviews of a firm\xe2\x80\x99s contingency funding plan includes an\nassessment of a CSE firm\xe2\x80\x99s internal and external communication strategies;\n\n       (m)    Developing a formal automated process to track material issues identified\nby the monitoring staff to ensure they are adequately resolved;\n\n        (n)     Ensuring that all phases of a firm\xe2\x80\x99s inspection process are completed\nbefore recommending that the Commission allow any additional CSE firms the authority\nto use the alternative capital method;\n\n\n\n                                        128\n\x0c              (o)     Improving collaboration efforts among TM, Corporation Finance, OCIE,\n       and the Office of Risk Assessment (ORA);\n\n              (p)     The development by Corporation Finance of internal guidelines for\n       reviewing filings timely and tracking and monitoring compliance with its internal\n       guidelines; and\n\n              (q)     The creation of a Task Force led by ORA with staff from TM, the\n       Division of Investment Management, and OCIE to perform an analysis of large firms\n       with customer accounts that hold significant amounts of customer funds and have\n       unregulated entities, to determine the costs and benefits of supervising these firms on a\n       consolidated basis.\n\n                                    The Agency\xe2\x80\x99s Response\n\n        On September 26, 2008, a day after the OIG issued its final audit report on the SEC\xe2\x80\x99s\nOversight of Bear Stearns and Related Entities, former SEC Chairman Christopher Cox\nannounced that TM would end the CSE program. Notwithstanding the closure of the program,\nthe SEC has made efforts to implement the recommendations contained in our report and to\nimprove its operations accordingly. Specifically, with respect to recommendations that pertained\ndirectly to the terminated CSE program, TM has, where appropriate, considered the applicability\nof the OIG\xe2\x80\x99s recommendations to its oversight of broker-dealers and has consulted with the\nFederal Reserve, which assumed responsibility for overseeing the activities of several firms at\nthe holding company level. As of March 31, 2010, management had completed implementation\nof 23 of the 26 recommendations contained in the OIG\xe2\x80\x99s audit report.\n\n                                      Concluding Remarks\n\n        In conclusion, we appreciate the Commission\xe2\x80\x99s interest in the SEC and our Office and, in\nparticular, in our audit report pertaining to the CSE program and Bear Stearns. I believe that this\nCommission\xe2\x80\x99s analysis of these matters as part of its overall evaluation of the causes of the\ncurrent financial and economic crisis in the United States is beneficial to strengthening the\naccountability and effectiveness of the SEC. Thank you.\n\n\n\n\n                                               129\n\x0cU.S. Securities\nand Exchange\n Commission\n\n\n\n\n          Additional copies of this report may be obtained by contacting the\n                   Office of Inspector General at (202) 551-6061.\n\n          The report is also available on the Inspector General\xe2\x80\x99s website at\n                               hhtp://www.sec-oig.gov.\n\x0c"